Realtime Community | IT Compliance

The Realtime IT Compliance Community is an objective source for information related to IT Compliance, regulations, information security, and data protection. The community provides a wide range of resources including blogs, articles, white papers, forums and podcast as well as links to external resources.

[0x1] Smart Grid Privacy: Possible Privacy Standards To Address Concerns

[0x2] 15 Smart Grid Privacy Concerns + Other Smart Grid Thoughts

[0x3] HIPAA And Surveillance In Hospitals

[0x4] CEs and BAs: Be HIPAA/HITECH Compliant Or Pay A Hefty Penalty

[0x5] Smart Grid Privacy: Laws and Implications

[0x6] 6 Critical Factors for Effective Information Security & Privacy Policies

[0x7] Who Are Your Business Associates?

[0x8] HIPAA/HITECH Etc. Retention: Does Your Reality = Your Requirements?

[0x9] Proposed HIPAA Privacy Rule Change Explicitly Makes Genetic Info PHI

[0xA] Privacy For The Deceased

Free Information Technology Magazines and Downloads from bestsecuritytips.tradepub.com

Free publications about information technology and digital communication.

[0x1] Enabling Enterprise-Class Business Continuity for Less

[0x2] Gartner Report: Storage Efficiency Puts SSD on the Map

[0x3] More Data Doesn't Always Mean More Cost

[0x4] Three Must Haves for the Virtual Data Center

[0x5] Five Ways to Lower SAN Administration to Three Hours a Week

[0x6] Transforming Business Continuity with Virtualized Servers and Storage

[0x7] Military & Aerospace Electronics

[0x8] La Guia Esencial para AIX y IBM i(i5/OS) de Recuperacion de Desastres

[0x9] True Thin Provisioning

[0xA] Fluid Data Storage Drives Flexibility in the Data Center

GovInfoSecurity.com Blogs RSS Syndication

GovInfoSecurity.com.com Blog RSS Feeds

[0x1] White House Not Counting on Cybersecurity Legislation, Yet

[0x2] Did a State CISO Get Fired Because of This Blog?

[0x3] Obama is Late Again in Keeping Privacy Promise

[0x4] Schmidt's Can-Do Spirit on Cloud Computing

[0x5] The Government's Infosec "Conspirators"

[0x6] Yes, Howard Schmidt Has the President's Ear

[0x7] CISO Witnesses Hack Like No Other

[0x8] Declassified CNCI Summary: What's New?

[0x9] Schmidt to Announce Easing of CNCI Secrecy

[0xA] Howard Schmidt Achieves Rock-Star Status

ITWeb Internet

Latest ICT Internet news

[0x1] King III links in with social networks

[0x2] Rivals gain from Google book deal

[0x3] US lawmaker rallies broadband changes

[0x4] Twitter offers advertising service

[0x5] Websense harnesses cloud

[0x6] FinSwitch introduces Web services

[0x7] IP over avian carrier

[0x8] Initiative sees teachers collaborate online

[0x9] Asian sites profit from virtual money

[0xA] Obama warns teens of Facebook

Top 10 Latest Virus Threats from Aladdin

Virus List from Aladdin - RSS Feed

[0x1] Win32.Gimmiv.a - Updated on: 10/26/2008 - Threat Level: Low

[0x2] Win32.ACVE.o - Updated on: 10/2/2008 - Threat Level: Low

[0x3] Win32.Adload.aro - Updated on: 10/2/2008 - Threat Level: Low

[0x4] Win32.Adload.asj - Updated on: 10/2/2008 - Threat Level: Low

[0x5] Win32.Adload.ask - Updated on: 10/2/2008 - Threat Level: Low

[0x6] Win32.Adload.asn - Updated on: 10/2/2008 - Threat Level: Low

[0x7] Win32.Adload.asq - Updated on: 10/2/2008 - Threat Level: Low

[0x8] Win32.Adload.atq - Updated on: 10/2/2008 - Threat Level: Low

[0x9] Win32.Adload.atz - Updated on: 10/2/2008 - Threat Level: Low

[0xA] Win32.Adload.aub - Updated on: 10/2/2008 - Threat Level: Low

CSOONLINE.com - Physical Security

[0x1] Travel Security: What to Pack to Survive a Natural Disaster

[0x2] Convergence: The Semantics Trap

[0x3] ATM Skimming: How to Recognize Card Fraud

[0x4] Telltale Signs of ATM Skimming

[0x5] Physical Security Risk and Countermeasures: Effectiveness Metrics

[0x6] Physical Security Risk and Countermeasures: Information Requirements

[0x7] Pleaserobme.com Highlights Dangers of TMI on Social Networks

[0x8] Disaster in Haiti: Advice for Employees and Operations on the Ground

[0x9] Debate Rages Over Converging Physical and IT Security

[0xA] Security and Building Design: What Changed in This Decade

TheAppleBlog

TheAppleBlog, published by and for the day-to-day Apple user, is a prominent source for news, reviews, walkthroughs, and real life application of all Apple products.

[0x1] Was the iPad Launch a Success?

[0x2] iPad Battery Replacement Program

[0x3] Video How-To: Printer Sharing on a Mac

[0x4] New iPad Details Emerge as Pre-Ordering Commences

[0x5] Which iPad I’m Ordering and Why

[0x6] iPad Now Available for Pre-order

[0x7] Rumor Has It: iPhone 4.0 Bringing Multitasking

[0x8] Write for TheAppleBlog

[0x9] Street Fighter IV Arrives on the iPhone

[0xA] Sponsor post: Calling All Macs!

msnbc.com: Security

Msnbc.com is a leader in breaking news and original journalism.

[0x1] Red Tape: Toyota woes raise car-tech woes

[0x2] Feds' e-mail botch earns a raspberry

[0x3] Internet fraud losses hit $560 million in 2009

[0x4] Privacy issues nix Netflix movie-picking contest

[0x5] Red Tape: Poodle, Glenn Beck at center of Facebook fight

[0x6] UK pressures Facebook to install ‘panic button’

[0x7] Sponsored By:

[0x8] Officials: Ex-TSA worker tried to sabotage computers

[0x9] Google chief sees outcome 'soon' in China row

[0xA] Newsweek: Inside the rush to recruit elite hackers

Gandi IWI Blog

[0x1] IP Transit Outage in France Telecom

[0x2] Maintenance Gandi.Net and API

[0x3] .CN domain creation suspension

[0x4] -50% discount for .ME extensions

[0x5] .HK domains now available at Gandi!

[0x6] Accented .EU domain names open on December 10th at 11:00 CET!

[0x7] .PT domains available at Gandi

[0x8] Network Maintenance overnight 19-20 November

[0x9] Hosting: Launch of multiple IP addresses for your servers

[0xA] Your server on IPv6?

US-CERT Current Activity

The US-CERT Current Activity web page is a regularly updated summary of the most frequent, high-impact types of security incidents currently being reported to the US-CERT.

[0x1] Apple Releases Safari 4.0.5

[0x2] Microsoft Releases March Security Bulletin

[0x3] Energizer DUO USB Battery Charger Software Allows Remote System Access

[0x4] Cisco Releases Multiple Security Advisories

[0x5] Microsoft Releases Advance Notification for March Security Bulletin

[0x6] U.S. Census Bureau 2010 Census Campaign Warning

[0x7] Microsoft Re-Releases Security Bulletin MS10-015

[0x8] Microsoft Releases Security Advisory to Address VBScript Vulnerability

[0x9] Adobe Releases a Security Update for Download Manager

[0xA] Mozilla Releases Security Advisories

WindowSecurity.com blogs

Welcome to our Network Security blogs. The blogs are updated on a regular basis with the latest news, information and insider gossip within the network security world and security related fields, such as cryptography.

[0x1] Twitter takes steps to stop malware links

[0x2] 60+ Sites recently compromised by SEO poisoning

[0x3] Battery charger can infect computers with a Trojan

[0x4] Should software vendors be held liable for vulnerabilities that lead to security breaches?

[0x5] NSS Labs: IE 8 beats other browsers at stopping social attacks

[0x6] VBS vulnerability in Internet Explorer on Windows 2000/XP/Server 2003

[0x7] Fake Amazon order confirmations contain link to malware

[0x8] Microsoft vs. the Botnet

[0x9] Reputation filtering can boomerang on you when doing penetration testing

[0xA] U.S. Cybersecurity law will require licensing of (some) IT security professionals

Linux Exposed

The Linux Security and hacking Resource

[0x1] Hosted Exchange and Hosted Sharepoint

[0x2] Inspecting HTTP

[0x3] Windows Hacking and Windows Security Site

[0x4] Cracking WPA and WPA2 passwords

[0x5] Ilegal SEO techniques

[0x6] Torrents and SSH Tunnels

[0x7] Preventing Accidental Denial of Service

[0x8] Enhance Security with Port Knocking

[0x9] Analyzing Malicious SSH Login Attempts

[0xA] Formatstrings and OpenBSD

News from trapkit.de

News from trapkit.de

[0x1] [22.02.2010] avast! Security Advisory

[0x2] [02.02.2010] Apple iPhone OS and Mac OS X Security Advisory

[0x3] [31.01.2010] Oracle Solaris Kernel Security Advisory

[0x4] [27.12.2009] New version of checksec.sh

[0x5] [09.09.2009] Apple iPhone OS AudioCodecs Heap Buffer Overflow (TKADV2009-007)

[0x6] [16.05.2009] libsndfile/Winamp Security Advisory (TKADV2009-006)

[0x7] [04.04.2009] xine-lib Security Advisory (TKADV2009-005)

[0x8] [15.02.2009] xine-lib also affected by TKADV2009-004

[0x9] [28.01.2009] FFmpeg Security Advisory (TKADV2009-004)

[0xA] [22.01.2009] GStreamer Security Advisory (TKADV2009-003)

Ubergizmo

Ubergizmo is a top consumer electronics news and reviews site.

[0x1] Microsoft Windows Phone 7 series theme

[0x2] Origin PC unveils speedy machine

[0x3] Miniature cities end up on power plug

[0x4] Samsung Sunburst to hit the US

[0x5] USB Super 16 Port Hub

[0x6] Amazon Kindle App For Android To Appear On Dell Streak?

[0x7] Turn Your MSI Wind Netbook Into An iPad

[0x8] Moonlight Cushion Aims To Keep You Happy

[0x9] Control Your DSLR Via A Nintendo DS With The Open Camera Controller Hack

[0xA] Fuji FinePix Z700EXR Features Pet Detection

DEFCON Announcements!

DEFCON is the world's largest annual hacker convention, held every year in Las Vegas, Nevada. The first DEFCON took place in June 1993. DEF CON is renowned for the "arcane arts" of drinking, socializing, debugging, and crowd control. DEFCON is what you make of it, so get involved and help the community grow. This Feed will keep you up to date with some announcements surrounding pre and post con events, references to DEFCON in the news, and other errata. For the most up to date information visit or subscribe to the rss feeds on the forums (http://forum.defcon.org/) See http://www.defcon.org/ for more details, discussion forums, past speeches, and planning for the next year.

[0x1] Pics from DEF CON 17 on Facebook!

[0x2] Book your room for DEF CON 18!

[0x3] DEF CON 18 Call for Papers is Open!

[0x4] Confirmed Contest & Events for DEF CON 18!

[0x5] DEF CON Archives Complete!

[0x6] DEF CON 17 Merch at J!NX

[0x7] DEF CON Archives Nearing Completion!

[0x8] Pricing for DEF CON 18

[0x9] Happy New Year from DEF CON!

[0xA] DEF CON Archives Pages Up and Running!

Oracle Security Alerts

Security Alerts Issued by Oracle

[0x1] Oracle Security Alert for CVE-2010-0073 - February 2010

[0x2] Critical Patch Update - January 2010

[0x3] Critical Patch Update - October 2009

[0x4] Critical Patch Update - July 2009

[0x5] Critical Patch Update - April 2009

[0x6] Critical Patch Update - January 2009

[0x7] Critical Patch Update - October 2008

[0x8] Critical Patch Update - July 2008

[0x9] Critical Patch Update - April 2008

[0xA] Critical Patch Update - January 2008

Jeremiah Grossman

A page to show up #1 on Google when searching for "Jeremiah" (Currently #5).
The prophet, TV show, and that pesky Owyang guy going down!

A page to show up #1 on Google when searching for "Jeremiah Grossman", and it FINALLY has!

[0x1] Best of Application Security (Friday, Mar. 12)

[0x2] Password Managers, is this the best option user’s have?

[0x3] Best of Application Security (Friday, Mar. 5)

[0x4] Best of Application Security (Friday, Feb. 26)

[0x5] Compliance and Habit holding back Application Security

[0x6] Best of Application Security (Friday, Feb. 19)

[0x7] Hey Massachusetts, where is your application security requirement?

[0x8] Infrastructure vs. Application Security Spending

[0x9] Best of Application Security (Friday, Feb. 12)

[0xA] Where's WhiteHat? Re: Scanner Comparisons

Zero in a bit

Application security testing, analysis, and metrics

[0x1] Veracode at RSA 2010

[0x2] Mobile Malware Counterpoints

[0x3] In Which We Dispel Misconceptions

[0x4] Is Your BlackBerry App Spying on You?

[0x5] Mobile App Security

[0x6] Google Admitting Compromise Good News

[0x7] An Ounce of Prevention is Worth a Pound of Cure

[0x8] We Need To Learn More About the RBS Worldpay ATM Attack

[0x9] White Box Better Than Black Box

[0xA] From the 10 Years Ago Today Department

Open Source Security

Discussion of security flaws, concepts, and practices in the Open Source community

[0x1] Re: CFPs and con invitations on the list

[0x2] [HITB-Announce] HITBSecConf2010 - Dubai Agenda Released

[0x3] Re: CFPs and con invitations on the list

[0x4] Re: CFPs and con invitations on the list

[0x5] Call for papers: ISP-10, USA, July 2010

[0x6] Re: [Drbd-dev] [oss-security] CVE request: kernel: connector security bypass

[0x7] CVE-2010-0397: NULL pointer dereference in PHP's xmlrpc extension

[0x8] Re: [Drbd-dev] [oss-security] CVE request: kernel: connector security bypass

[0x9] CVE Request -- Unbound v1.4.3 -- 64 bit platforms specific remote DoS

[0xA] CVE-2010-0729 kernel: ia64: ptrace: peek_or_poke requests miss ptrace_check_attach()

halsten

arbitrary dump

[0x1] Security Conference(s)

[0x2] Zend Studio For Eclipse v.6.1 Keygen

[0x3] Reversing Pro Evolution Soccer 6 - End

[0x4] Reversing Pro Evolution Soccer 6 - Part 3

[0x5] Reversing Pro Evolution Soccer 6 - Part 2

[0x6] Reversing Pro Evolution Soccer 6 - Part 1

[0x7] Reversing Pro Evolution Soccer 6 - Intro

[0x8] Facebook Puzzles Solution

[0x9] Backdoor.W32.Small.PF Analysis

[0xA] Simple PE Viewer (wxWidgets)

Infosec Island Latest Articles

Adrift in Threats? Come Ashore!

[0x1] Quick Tips on Secure Shell

[0x2] Need to consolidate information security compliance efforts? Try open source.

[0x3] Hacker Releases Second Video of Enhanced XerXeS DoS Attack on Apache Vulnerability

[0x4] Using Parameter Pollution and Clickjacking to Aid Anti-CSRF Bypass

[0x5] Analyst Study Shows Employees Continue to Put Data at Risk

[0x6] Even Einstein Can’t Track Google’s “Script Kiddie” Hackers

[0x7] Newbie Introduction to Digital Forensics Part 2

[0x8] Simple Log Review Checklist Released!

[0x9] Press F1 for Help, pwned.

[0xA] Fiserv to Banks: Stay on Outdated Adobe Reader

Symantec Security Response Podcasts

Listen online, download to your computer, or subscribe and get the latest information automatically.

[0x1] Search Engine Poisoning

[0x2] Symantec Security Response Profile: Zulfikar Ramzan

[0x3] ISTR XIV - Phishing and Spam in the Economic Downturn

[0x4] ISTR XIV - Financially Motivated Malicious Code Development

[0x5] ISTR XIV - Web-Based Attacks

[0x6] e-Discovery Virtual Roundtable: Email & Web 2.0

[0x7] Symantec Report on the Underground Economy

[0x8] Norton AntiVirus 2009 and Norton Internet Security 2009 Product Overview

[0x9] Internet Security Threat Report Volume 13: Phishing Trends

[0xA] Internet Security Threat Report Volume 13: Maturation of Underground Economy Servers

nixCraft Linux Sys Admin Blog

This is a Linux sys admin journal by Vivek about sys admin work, Linux tips & tricks, hacks, news and more.

[0x1] Top 20 Nginx WebServer Best Security Practices

[0x2] Arrrggg: Open Source Users Are Pirates

[0x3] Download of the day: GNU/Linux Advanced Administration PDF Book

[0x4] 10 Greatest Open Source Software Of 2009

[0x5] HowTo: Create sar Graphs With kSar [ Identifying Linux Bottlenecks ]

[0x6] Google Public DNS Servers Launched

[0x7] nixCraft FAQ PDF Collection Now Available To All

[0x8] FreeBSD 8.0 Review: Enterprise Ready Server Operating System

[0x9] Download Fedora 12 CD / DVD ISO

[0xA] Linux / Windows Application For Prevention Of RSI (Repetitive Strain Injury)

Virus and worm news from Network World

The latest virus and worm news and analysis from NetworkWorld.com.

[0x1] What Are the Most Overrated Security Technologies?

[0x2] Dept of Homeland Security Crowdsources Cybersecurity

[0x3] Underrated computing threats you need to know about

[0x4] DHS Urges 'Sense of Urgency' for Cyber Security

[0x5] Cisco develops VPN client for PCs, smartphones

[0x6] 15 Free Security and Backup Utilities

[0x7] Microsoft Uses Legal System to Combat Botnet

[0x8] One or Two Anti-Malware Programs?

[0x9] Enterprise Security Tips on a Small-Business Budget

[0xA] Virtualised USB key beats keyloggers

Government Technology

[0x1] Government Technology - January 2009

[0x2] Government Technology - December 2008

[0x3] Government Technology - December 2008

[0x4] Government Technology - November 2008

[0x5] Government Technology - November 2008

[0x6] Government Technology - October 2008

[0x7] Government Technology - October 2008

[0x8] Government Technology - September 2008

[0x9] Government Technology - September 2008

[0xA] Government Technology - August 2008

CSOONLINE.com - Metrics/Budgets

[0x1] RSA 2010: Infosec Pros Get Raises Despite Recession

[0x2] Security visualization hardware and software

[0x3] Physical Security Risk and Countermeasures: Effectiveness Metrics

[0x4] Physical Security Risk and Countermeasures: Information Requirements

[0x5] Companies on IT Security Spending: Where's the ROI?

[0x6] Clear Metrics for Cloud Security? Yes, Seriously

[0x7] 7 Ways to Stay Happy in a Miserable Profession

[0x8] Survey Says More Companies Hiring CSOs, Holding Steady on Spending

[0x9] IT Security Outsourcing in Decline; Companies Do More In-house

[0xA] DHS to Get Big Boost in Cybersecurity Spending in 2010

SecTechno

Information Security Blog

[0x1] Building your OWN Malware Lab (Part 2)

[0x2] Building your OWN Malware Lab (Part 1)

[0x3] Block New & Emerging Threats with SECURITY DATABASE

[0x4] Zeus Trojan infected 2.5 thousands Corperate machine around the Globe

[0x5] Fake Antivirus with a Live Technical Support

[0x6] Adobe Apologized for a 16 month-old-Bug

[0x7] Cybercriminals had a phishing Attack on .gov and .mil

[0x8] Microsoft prepares 13 patches for Next Tuesday

[0x9] F-Secure: Innovating to Protect the Irreplaceable in 2010

[0xA] Apache SpamAssassin New Release

[ISN] InfoSec News Mailing List

InfoSecNews

[0x1] SSD tools crack passwords 100 times faster

[0x2] GCHQ staff lost 35 laptop computers, report says

[0x3] Hancock Fabrics Hackers Switch Stores' PIN Pads

[0x4] GDC: Developers Vs. Cybercriminals

[0x5] Linux Advisory Watch: March 14th, 2010

[0x6] Help wanted: Agencies expect to hire more info security pros in 2010

[0x7] USENIX HotSec '10 Call for Papers Now Available

[0x8] Microsoft races to plug IE hole after exploit code released

[0x9] Change in Focus

[0xA] TJX Hacking Conspirator Gets 4 Years

CSOONLINE.com - Exec. Communication

[0x1] From the CIO: Why You Didn't Get the CISO Job

[0x2] Winkler: Grab Your Company by Its Proverbial Balls

[0x3] Excerpt: Conducting a Protective Security Advance

[0x4] 7 Ways to Stay Happy in a Miserable Profession

[0x5] A Day In The Life of Two IT Security Curmudgeons

[0x6] Report: Business Risk of Fraud, Corruption Up Amid Economic Crisis

[0x7] 5 Ways To Survive a Data Breach Investigation

[0x8] 5 Steps to Communicate Security's Value to Non-security People

[0x9] Security Geeks: From Isolation to Rock Stars

[0xA] 5 Must-Do Cyber Security Steps for Obama

The Falcon's View

Mental meanderings of an infosec obsessive...

[0x1] Security BSides Austin 2010 - Join Us Saturday!

[0x2] RSA 2010 - Day 2 Round-up

[0x3] RSA 2010 - Day 1 Round-up

[0x4] RSA 2010 - Innovation Sandbox: Not Really Innovative

[0x5] Annual ABA ISC+EDDE Meeting After-Report

[0x6] The Need for Consumer-Oriented Intervention

[0x7] RSA 2010 Is Nearly Here

[0x8] Micro-Generation Closer to Reality

[0x9] A Sense of Self-Preservation

[0xA] 2010 CWE/SANS Top 25 Most Dangerous Programming Errors Released

2600: The Hacker Quarterly

Off The Hook and Off The Wall

[0x1] CLUB MATE DAY #2 NEXT SATURDAY

[0x2] Off The Hook show for March 10, 2010

[0x3] Off The Wall show for March 9, 2010

[0x4] VERIZON OUTAGE FINALLY OVER AFTER FOUR DAYS

[0x5] THE NEXT HOPE PREREGISTRATION NOW OPEN

[0x6] CALL FOR SPEAKERS FOR THE NEXT HOPE

[0x7] WINTER ISSUE OF 2600 RELEASED

[0x8] 2600 POLO SHIRTS ARE OUT!

[0x9] CLUB MATE NOW AVAILABLE THROUGH 2600

[0xA] AUTUMN ISSUE OF 2600 RELEASED

IHS

Home of Johnny Long and Hackers for Charity, Inc

[0x1] Mini DV camcorder anyone?

[0x2] Video games 4 street kids

[0x3] Day 4,5,6,7

[0x4] Day 2&3

[0x5] USA: Day 1

[0x6] We’re Baaack! =)

[0x7] Learning

[0x8] Video blog: Boda rides in Kampala

[0x9] Video blog: Feb 17, 2010

[0xA] Long Journey Video Blog: Feb 12, 2010

The Register - Security

Biting the hand that feeds IT

[0x1] IT contractors convicted of UK casino hack scam

[0x2] Google '99.9%' certain to pull China search plug

[0x3] Programmer gets 4 years in TJX hack case

[0x4] Netflix cancels recommendation contest over privacy

[0x5] Trojan armed with hardware-based anti-piracy control

[0x6] Safari update cages numerous security bugs

[0x7] SSD tools crack passwords 100 times faster

[0x8] McAfee inadvertently speeds creation of Metaploit IE exploit pack

[0x9] Turkey cuffs 23 'militant' hacker suspects

[0xA] Sarah Palin to testify in email hack trial

The Web Security Mailing List (WASC)

The Web Security Mailing List is an open information forum for discussing topics relevant to web security.

[0x1] [WEB SECURITY] [Tool] sqlmap 0.8 released

[0x2] Re: [WEB SECURITY] JSReg now on acid

[0x3] [WEB SECURITY] [HITB-Announce] HITBSecConf2010 - Dubai Agenda Released

[0x4] Re: [WEB SECURITY] JSReg now on acid

[0x5] [WEB SECURITY] black berry security

[0x6] [WEB SECURITY] 2nd CfP: INTERNET 2010 || September 20-25, 2010 - Valencia, Spain

[0x7] [WEB SECURITY] Hackvertor update

[0x8] Re: [WEB SECURITY] Need a real Java web application (with constraints)

[0x9] [WEB SECURITY] JSReg now on acid

[0xA] RE: [WEB SECURITY] Need a real Java web application (with constraints)

Xatrix Security Advisories

Xatrix Security Advisories

[0x1] Ubuntu Linux: Firefox vulnerabilities

[0x2] Red Hat: Ruby safe-level vulnerability

[0x3] Red Hat: Seamonkey critical security vulnerabilities

[0x4] Debian: Drupal several remote vulnerabilities

[0x5] Debian: Kernel local race condition

[0x6] SUSE: Kernel local privilege escalation

[0x7] Ubuntu Linux: Update introduced regression

[0x8] Ubuntu Linux: Mozilla-Thunderbird vulnerabilities

[0x9] Mandriva: Perl log flaw

[0xA] Ubuntu Linux: Mozilla various vulnerabilities

Kismet/Wireless

Kismet and Wireless Stuff ... Extended development logs, up and coming features, and general wireless link-whorery.

[0x1] SVN commit 3016

[0x2] SVN commit 3015

[0x3] SVN commit 3014

[0x4] SVN commit 3013

[0x5] SVN commit 3012

[0x6] Blackhat & Shmoo

[0x7] SVN commit 3011

[0x8] Quahogcon this spring

[0x9] SVN commit 3010

[0xA] SVN commit 3009

Moreover Technologies - Computer security news

Computer security news - more than 340 categories of real-time RSS news feeds

[0x1] Free Top Stock Picks Alerts - Sponsored Link

[0x2] Australia defends mandatory Internet filter

[0x3] Koobface worm infects social networking sites

[0x4] Ten things your VOIP firewall should do

[0x5] NPIA plans data sharing system

[0x6] Drudge Report, TechCrunch hit by ad malware

[0x7] RAPPORT DE LA MISSION CONJOINTE GOUVERNEMENT - PARTENAIRES POURLIDENTIFICATION DES ZONES A RISQUE, LE CIBLAGE ET LEVALUATION DES BESOINS DES POPULATIONS AFFECTEES PAR LA MAUVAISE CAMPAGNE AGRICOLE 2009/2010 - Draft

[0x8] IBM says less software security vulnerabilities found in 2009

[0x9] 10 things your VoIP firewall should do

[0xA] How to encrypt a folder in Windows XP Pro

Security

[0x1] Estonian Man Jailed for Launching DoS Attack

[0x2] Symantec: New Spam Threat Could Overwhelm Corporate Servers

[0x3] .org Domains to Get Tighter Security

[0x4] Zeus Botnet Adds New Capabilities

[0x5] Apple Patches 16 Holes in Safari

[0x6] Arkansas National Guard Hard Drive Missing

[0x7] Webroot: Beware of Fake Windows Update

[0x8] F-Secure: Adobe Reader Most Exploited Software

[0x9] HSBC Admits Data Theft Bigger Than Originally Thought

[0xA] Researcher Publishes IE Zero-Day Exploit Code

Twitter / mdowd

Twitter updates from mdowd / mdowd.

[0x1] mdowd: @ncb Get back to work!

[0x2] mdowd: @manzuik Nice one!

[0x3] mdowd: @manzuik Congrats! What are you going to be doing now?

[0x4] mdowd: @daveaitel Congrats!

[0x5] mdowd: RT @0x41414141: new blog post discussing return-oriented programming and code reuse on the zynamics blog is live (http://blog.zynamics.com/)

[0x6] mdowd: @hypatiadotca I have a milestone too, they're pretty good apart from battery life. (Also, seems to be a bit buggy sometimes.)

[0x7] mdowd: @strcpy Nice one!

[0x8] mdowd: @drraid cheers! passed over again i suppose..

[0x9] mdowd: @VS_ Yeah; I'll just stand close to the girls in the line in front of me and pretend I know them

[0xA] mdowd: Now I'm going to be standing in line at customs going "Fuck, they're not going to let me in with these shoes"

AirSafe.com Web Site

Site dedicated to providing the public with information on aviation safety and security.

[0x1] AirSafe.com News

[0x2] Podcast on Intial Details of Air France A330 Crash near Brazil

[0x3] Air France Flight 447 Accident Information

[0x4] Crash of Turkish Airlines 737 in Amsterdam

[0x5] Continental Connection Crash in Buffalo 12 February 2009

[0x6] A320 Crashes in the Hudson River

[0x7] Year in Review 2008

[0x8] Risks from Incapacitated Pilots and Pilots Who May Deliberately Crash Airplanes

[0x9] Interview on 'The Gregg Knapp Experience' - 18 November 2008

[0xA] Complacency and the Qantas A330 Accident of 7 October 2008

Cisco Learning Home : All Content - Security

All Content in Security

[0x1] ASA vs PIX

[0x2] Cisco WCCP Security

[0x3] ASA - Inspect ICMP with PMTUD

[0x4] ASA Guidelines - VLANS

[0x5] IPv6 security concerns

[0x6] VPN Client

[0x7] Some Questions on ISCW

[0x8] Security Specialist Certifications

[0x9] Cisco ASA 5550 Best Guide/Book

[0xA] is it possible to create VPN connection using one subnet?

TippingPoint Upcoming Events

Upcoming conferences, tradeshows and Webcasts/podcasts where TippingPoint is participating.

[0x1] Orlando Tech-Security Conference - Thurs., December 17, 2009

[0x2] SANS CDI East 2009 - Monday, December 14, 2009

[0x3] Network World IT Roadmap San Francisco - Thurs., December 10, 2009

[0x4] Sacramento Tech-Security Conference - Thurs., December 10, 2009

[0x5] Atlanta Tech-Security Conference - Thurs., November 19, 2009

[0x6] Milwaukee Tech-Security Conference - Thurs., November 12, 2009

[0x7] Dallas SecureWorld Expo - November 4-5, 2009

[0x8] Educause 2009 (Booths #752, 754) - Nov. 3-5, 2009

[0x9] Seattle SecureWorld Expo - October 28-29, 2009

[0xA] Pittsburgh Tech-Security Conference - Thurs., November 5, 2009

CSOONLINE.com - Video Surveillance

[0x1] How 9-11 Shaped Hoover Dam Security Operations

[0x2] Hoover Dam Security in Pictures

[0x3] Taking the 'Closed' Out of CCTV

[0x4] Charitable Risk: Security Challenges of the Bill and Melinda Gates Foundation

[0x5] Study: Air Cargo Security Seriously Lacking

[0x6] Fast-Food FAIL: Drive-Thru Displays Point-of-Sale LAN Details

[0x7] Report: Shoplifting Surges in Down Economy

[0x8] Social Engineering: 5 Security Holes at the Office (Includes Video)

[0x9] VMS: How to Manage Surveillance Video

[0xA] 4 Steps Security Can Take to Prevent Kidnapping

Network World on Firewalls

The latest firewall news, analysis and reviews on NetworkWorld.com.

[0x1] DHS Urges 'Sense of Urgency' for Cyber Security

[0x2] Cisco Unveils AnyConnect Secure Mobility

[0x3] Enterprise Security Tips on a Small-Business Budget

[0x4] How to Stop P2P Data Breaches

[0x5] Get Tough With Your Users to Protect Your Network

[0x6] 'Kneber' Botnet Attacks PCs Worldwide: FAQ

[0x7] Stay Ahead of Malicious PDFs With Latest Adobe Update

[0x8] Comodo Firewall: Superb, If You Ignore Extras

[0x9] Critical Windows Fixes For Network-based Attacks

[0xA] EPIC files FOIA request over reported Google, NSA partnership

Dana Epp's ramblings at the Sanctuary

Life, the Universe and everything Security

[0x1] Announcing Elevation of Privilege: The Threat Modeling Game

[0x2] Reflecting on our Windows 7 birthday party

[0x3] Time to party! Windows 7 is here!

[0x4] RunAs Radio podcasts you might want to listen to

[0x5] Coding Tip: Why you should always use well known SIDs over usernames for security groups

[0x6] Major Windows 7 gotcha you should know about that may block you from upgrading

[0x7] Microsoft SDL bans mempcy()... next it will be zeros!!!!

[0x8] Using TS RemoteApp as an attack vector

[0x9] Is Twittering safe?

[0xA] Come have Coffee and Code in Vancouver with me and Microsoft tomorrow

LinuxSecurity.com: Slackware Advisories

The central voice for Linux and Open Source security news.

[0x1] Study: Spammers use e-mail ID to gain legitimacy

[0x2] Review: Mod-Security 2.5 by Magnus Mischel

[0x3] Slackware: 2010-069-01: pidgin: Security Update

[0x4] Slackware: 2010-067-01: httpd: Security Update

[0x5] Slackware: 2010-060-01: seamonkey: Security Update

[0x6] Slackware: gzip

[0x7] Slackware: openssl

[0x8] Slackware: php

[0x9] Slackware: httpd

[0xA] Slackware: pidgin

Securosis Blog

Main Securosis Blog

[0x1] Friday Summary: March 11, 2010

[0x2] Low Hanging Fruit: Quick Wins with Data Loss Prevention

[0x3] Upcoming Webinar: Database Assessment

[0x4] Database Security Fundamentals: Patching

[0x5] Incite 3/9/2010 - Ten Reasons I Love the RSAC

[0x6] Is It Wireless Security or Secure Wireless?

[0x7] SecurosisTV: Low Hanging Fruit - Endpoint Security

[0x8] RSA Tomfoolery: APT is the Fastest Way to Identify Fools and Liars

[0x9] Securosis at RSA Conference 2010

[0xA] FireStarter: Will Social Media Kill the Conference Star?

The RISKS Forum

Peter G. Neumann moderates this regular digest of current events which demonstrate risks to the public in computers and related systems. Security risks are often discussed.

[0x1] Risks Digest 25.96

[0x2] Risks Digest 25.95

[0x3] Risks Digest 25.94

[0x4] Risks Digest 25.93

[0x5] Risks Digest 25.92

[0x6] Risks Digest 25.91

[0x7] Risks Digest 25.90

[0x8] Risks Digest 25.89

[0x9] Risks Digest 25.88

[0xA] Risks Digest 25.87

ITtoolbox Downloads

[0x1] Using WebSphere DataStage with IBM DataMirror Change Data Capture

[0x2] Extend and Reuse Existing Mainframe Functions Through SOA - Part 4 of the Roadmap To Reduce Webcast Series

[0x3] Consolidate Applications From Non-Strategic Platforms Onto z/OS - Part 3 of the Roadmap To Reduce Webcast Series

[0x4] Tech Talk:: Strategic Solutions To Help Solve Top Issues In The Data Center Today

[0x5] How Safe Is Your Network? - Analyst #1 Choice for Vulnerability Management - Free Trial

[0x6] Always be Open for Business

[0x7] Make Compliance Work for You

[0x8] Reduce Operational Costs By Up To 95% - Part 1 of the Roadmap To Reduce Webcast Series

[0x9] Increase productivity by up to 40% - Part 2 of the Roadmap To Reduce Webcast Series

[0xA] Database Trends and Applications Survey Results: The Freshest BI Data from the Journal of Enterprise Data Management

ZDI: Published Advisories

Published Advisories

[0x1] ZDI-10-028: Skype URI Processing Arbitrary XML File Deletion Vulnerability

[0x2] ZDI-10-027: Skype Protocol Handler datapath Argument Injection Remote Code Execution Vulnerability

[0x3] ZDI-10-026: Hewlett-Packard OVPI helpmanager Servlet Remote Code Execution Vulnerability

[0x4] ZDI-10-025: Microsoft Office Excel XLSX File Parsing Remote Code Execution Vulnerability

[0x5] ZDI-10-024: Novell eDirectory SOAP Request Parsing Denial of Service Vulnerability

[0x6] ZDI-10-023: Multiple Vendor librpc.dll Signedness Error Remote Code Execution Vulnerability

[0x7] ZDI-10-022: IBM Informix librpc.dll Multiple Remote Code Execution Vulnerabilities

[0x8] ZDI-10-021: Novell NetStorage xsrvd Long Pathname Remote Code Execution Vulnerability

[0x9] ZDI-10-020: EMC HomeBase SSL Service Arbitrary File Upload Remote Code Execution Vulnerability

[0xA] ZDI-10-019: Mozilla Firefox showModalDialog Cross-Domain Scripting Vulnerability

VUPEN Security Advisories

VUPEN - Vulnerabilities and Security Advisories 24/7

[0x1] VUPEN - deV!Lz Clanportal "basePath" Parameter File Inclusion Vulnerability

[0x2] VUPEN - PhpMyLogon "username" Parameter Remote SQL Injection Vulnerability

[0x3] VUPEN - Azeno CMS "id" Parameter Remote SQL Injection Vulnerability

[0x4] VUPEN - Geekhelps ADMP SQL Injection and Local File Inclusion Vulnerabilities

[0x5] VUPEN - AdFreely Ad Board Script "LANG_CODE" Local File Inclusion Issues

[0x6] VUPEN - IBM AIX Security Update Fixes Sendmail Certificate Spoofing Vulnerability

[0x7] VUPEN - IBM WebSphere Application Server for z/OS Multiple Vulnerabilities

[0x8] VUPEN - Skype "skype-plugin:" URI Arbitrary XML File Deletion Vulnerability

[0x9] VUPEN - Fedora Security Update Fixes ViewVC Cross Site Scripting Vulnerability

[0xA] VUPEN - Fedora Security Update Fixes Tar Buffer Overflow Vulnerability

SecurityVibes UK

Security & Compliance Community

[0x1] Web 2.0 and Social Networks in the Enterprise

[0x2] Digital Economy Bill raises privacy concerns

[0x3] Cloud security threats identified by CSA

[0x4] Vote for your CSO Interchange topics

[0x5] Cloud Computing : a simple question of supplier risk

[0x6] Most dangerous coding errors outed

[0x7] Microsoft IE users to get browser choice update

[0x8] Google Buzz fail highlights privacy expectation rise

[0x9] Annual hacking challenge aims for mobiles and browsers

[0xA] The Challenges of Cross Border eID

Packet Storm Security Last 100

100 Most Recent Packet Storm File Additions

[0x1] Botan-1.9.4.tgz

[0x2] gnupg-2.0.15.tar.bz2

[0x3] fwbuilder-4.0.0.tar.gz

[0x4] anantasoft-xsrf.txt

[0x5] secunia-etsdisclose.txt

[0x6] secunia-etssql.txt

[0x7] notepadpoc.zip

[0x8] tarcpio-overflow.txt

[0x9] ispcp-rfi.txt

[0xA] secunia-etsb.txt

Securityvulns news channel

securityvulns.ru vulnerabilities newsline

[0x1] Целочисленное переполнение в библиотеке Autonomy KeyView / антивирусныз продуктах Symantec

[0x2] Переполнение буфера в Yahoo Player

[0x3] Многочисленные уязвимости безопасности в ncpfs

[0x4] Обратный путь в каталогах dpkg

[0x5] Межсайтовый скриптинг в Juniper Secure Access

[0x6] Выполнение кода в HP OpenView Performance Insight

[0x7] Переполнение буфера в GNU tar / cpio

[0x8] Переполнение буфера в XNView

[0x9] Cводка уязвимостей безопасности в Web-приложениях (PHP, ASP, JSP, CGI, Perl)

[0xA] Многочисленные уязвимости безопасности в Microsoft Excel, дополнено с 10.03.2010

Hacked Gadgets - DIY Tech Blog

Many articles about hacking gadgets. Examples of extreme technology. DIY projects describing how to build electronic projects. Fun top 5 and top 10 lists.

[0x1] Electronic Business Card

[0x2] Name the Thing Contest - 123

[0x3] Mark1.5 CoilMaster Upgrade - Now Charges in 1 Second

[0x4] Beer Battery

[0x5] El Jugador - Open-Source Game Console

[0x6] Steampunk Wheelchair Project

[0x7] DIY Binary Clock Build

[0x8] DIY Soil Moisture Sensor

[0x9] Worlds most Powerful Private Rocket

[0xA] Olympic Interactive LED Globes

PenTestIT

Your source for Information Security Related information!

[0x1] Firebug : A Firefox Plugin for Web Development and Testing!

[0x2] UPDATE: fimap v08!

[0x3] WebCastellum: An Open Source WAF!

[0x4] PPP.pdf

[0x5] QoS.pdf

[0x6] Spanning_Tree.pdf

[0x7] CHScanner: Multilayer, multiprotocol ARP, IPv4, IPv6, ICMP Network Scanning Tool!

[0x8] VLANs.pdf

[0x9] joomlajulia-lfi.txt

[0xA] azeno-sql.txt

Bugtraq

The premier general security mailing list. Vulnerabilities are often announced here first, so check frequently!

[0x1] ZDI-10-027: Skype Protocol Handler datapath Argument Injection Remote Code Execution Vulnerability

[0x2] ZDI-10-028: Skype URI Processing Arbitrary XML File Deletion Vulnerability

[0x3] [SECURITY] [DSA 2012-1] New Linux 2.6.26 packages fix several issues

[0x4] VUPEN Security Research - Apple Safari ColorSync Profile Integer Overflow Vulnerability

[0x5] [XSS] I found a xss in phpmyadmin 3.3.0 when we create new database in interface!

[0x6] [SECURITY] [DSA 2013-1] New egroupware packages fix several vulnerabilities

[0x7] [SECURITY] [DSA 2014-1] New moin packages fix several vulnerabilities

[0x8] iDefense Security Advisory 03.11.10: Multiple Vendor WebKit HTML Element Use After Free Vulnerability

[0x9] [USN-911-1] MoinMoin vulnerabilities

[0xA] [ MDVSA-2010:061 ] ncpfs

Packet Storm Security Headlines

Packet Storm Headlines

[0x1] FBI Reports Online Crime Losses Double In 2009

[0x2] Hacker Gets Info From St. Louis Police Computer

[0x3] NetFlix Cancels Recommendation Contest After Privacy Lawsuit

[0x4] China Issues Another Warning To Google On Enforced Censorship Of The Internet

[0x5] Hancock Fabrics Hackers Switch Stores' PIN Pads

[0x6] Can Apple Safari Avoid Another Pwn2Own Embarrassment?

[0x7] SSD Tools Crack Passwords 100 Times Faster

[0x8] Net Clash For Web Police Projects

[0x9] Businesses Warned Of New Spam Threat

[0xA] Kurdish Hackers Arrested

F5 Networks White Papers

F5 white papers provide information on critical technology areas and how F5 products help you improve upon or prepare for their deployment.

[0x1] F5 and Infoblox DNS Integrated Architecture

[0x2] Creating a Hybrid ADN Architecture with both Virtual and Physical ADCs

[0x3] Controlling the Cloud: Requirements for Cloud Computing

[0x4] A Green Architectural Strategy That Puts IT in the Black

[0x5] Geolocation and Application Delivery

[0x6] Unified Access and Optimization with F5 BIG-IP Edge Gateway

[0x7] BIG-IP Version 10.1: An Integrated Application Delivery Architecture

[0x8] Manageable Application Security

[0x9] Managing BIG-IP Devices with HP and Microsoft Network Management Solutions

[0xA] DNSSEC: The Antidote to DNS Cache Poisoning and Other DNS Attacks

CSOONLINE.com - Security Leadership

[0x1] Situational Awareness

[0x2] RSA 2010: Infosec Pros Get Raises Despite Recession

[0x3] Convergence: The Semantics Trap

[0x4] Leadership Roles: Organizing for Success

[0x5] Report: CISOs Keep Breach Costs Lower

[0x6] Take a Walking Tour of Your Company's Security

[0x7] 10 Things That Didn't Happen in 2009 (And Probably Won't Happen in 2010)

[0x8] Schmidt Tapped as White House Cybersecurity Coordinator

[0x9] 2009 Rewind: 3 Tales of FUD

[0xA] The Ultimate Security Pro Holiday Gift Guide

Boycott Novell

Exploring the reality behind exclusionary deals with Microsoft and their subtle (yet severe) implications

[0x1] Huffington Post, Technologizer, and Other Web Sites in Bill’s Pocket

[0x2] SXSW Used by Microsoft as Platform to Hypocritically Slam Google

[0x3] Groklaw: Microsoft “Wants to Do More Novell-style Patent Deals”

[0x4] Apple’s and Microsoft’s Patent Attacks and Why the Linux Foundation’s Response Disappoints

[0x5] Microsoft Should be “Sued for Breach of Contract” in Vista 7

[0x6] IRC: #boycottnovell @ FreeNode: March 14th, 2010

[0x7] Michael Gartenberg’s AstroTurfing for Microsoft Takes ‘Entelligence’ Tag

[0x8] Apple Makes Toys, GNU/Linux Still Ahead of It

[0x9] More EMC-VMware Snuggling (and Why Microsoft Executives Were Put in Charge)

[0xA] Internet Mayhem With Microsoft Windows Botnets

lkml.org

lkml.org - the realtime linux kernel mailinglist archive

[0x1] [PATCH] USB: f_mass_storage: dynamic buffers for better alignment

[0x2] Re: [PATCH] serial: Two branches the same in timbuart_set_mctrl()

[0x3] Re: 2.6.34-rc1: rcu lockdep bug?

[0x4] Re: [PATCH -mmotm 0/5] memcg: per cgroup dirty limit (v7)

[0x5] Re: [PATCH -mmotm 1/5] memcg: disable irq at page cgroup lock

[0x6] Re: [PATCH] init dynamic bin_attribute structures

[0x7] Re: ATA 4 KiB sector issues.

[0x8] Re: [PATCH] Staging: wlan-ng: fix coding style in hfa834x_usb.c

[0x9] Re: [PATCH 05/11] Export unusable free space index via /proc/unusa ...

[0xA] Re: [PATCH 15/18] KVM: MMU: Propagate the right fault back to the ...

Enterprise Storage Forum News

Covering security, storage, and networking for the enterprise IT professional

[0x1] Solid State Drives Get Faster with TRIM

[0x2] Solid State Drives in Enterprise Applications

[0x3] Oracle to Keep Sun's Data Storage, Tape Businesses

[0x4] LTO-5 Breathes New Life into Tape Storage

[0x5] NetApp Deepens Ties with Cisco, VMware

[0x6] EMC Reports Strong Data Storage, Deduplication Sales

[0x7] Symantec Adds Deduplication to Backup Software

[0x8] EMC Doubles Clariion, Celerra Density with 2TB SATA Drives

[0x9] RAID Storage Levels Explained

[0xA] NetApp, Cisco and VMware Deal May Be Coming

CSOONLINE.com - Disaster Recovery

[0x1] Massive Storms Don't Halt D.C. IT Ops

[0x2] DDoS Returns: What Researchers Are Learning About Targets, Tactics

[0x3] Disaster in Haiti: Advice for Employees and Operations on the Ground

[0x4] Chemical Spill Response: How Dow is Training Small Town America to Handle Hazmat Emergencies

[0x5] Business Continuity and Disaster Recovery in a Tornado Zone

[0x6] Symantec: Disaster Recovery Pressures Mount for Business

[0x7] Survey: Business Continuity Plans Factor in Mobile, Social Networking

[0x8] Swine Flu: What Exactly Does Phase 5 Mean?

[0x9] Swine Flu: To Fear is to Fail

[0xA] Swine Flu: How to Make Biz Continuity Plans

Rational Survivability

Hoff's Ramblings about Information Survivability, Information Centricity, Risk Management and Disruptive Innovation. Oh, I have a fondness for virtualization and cloud computing security, too...

[0x1] Video: Cloud Computing in Government…

[0x2] Incomplete Thought: The Other Side Of Cloud – Where The (Wild) Infrastructure Things Are…

[0x3] Chattin’ With the Boss: “Securing the Network” (Waiting For the Jet Pack)

[0x4] 2010 RSA Security Bloggers Award – Thanks A Bunch…

[0x5] RSA Interview (c/o Tripwire) On the State Of Information Security In Virtualized/Cloud Environments.

[0x6] Slides from My Cloud Security Alliance Keynote: The Cloud Magic 8 Ball (Future Of Cloud)

[0x7] Virtual Networking/Nexus 1000v Virtual Switch Blogger Roundtable/WebEx Logistics – March 2nd.

[0x8] Six Year Old Rationalizes the Cloud

[0x9] Don’t Hassle the Hoff: Recent Press & Podcast Coverage & Upcoming Speaking Engagements

[0xA] Comments on the PwC/TSB Debate: The cloud/thin computing will fundamentally change the nature of cyber security…

Room362.com RSS Feed

Blog

[0x1] Practical Exploitation

[0x2] @RSnake ’s RFI List in Burp Suite

[0x3] Security (CAN BE) an ART not a SCIENCE

[0x4] grmn00bs podcast

[0x5] Linked in to Twitter

[0x6] Meterpreter tunneling and VNC revamped

[0x7] Metasploit with Ruby 1.9.1

[0x8] 2009 Geek Christmas List

[0x9] SHODAN The Computer Search

[0xA] Brute-Forcing Compatibility

CSOONLINE.com - Federated IDM

[0x1] Social Networking a Tool for More Secure Identity Management? No Joke!

[0x2] News Flash: Data Debauchery That Happens in Vegas Doesn't Stay There

[0x3] Why Security Pros Hate Microsoft SharePoint (and What to Do About It)

[0x4] Federated ID: An Idea Whose Time Never Came?

[0x5] Identity Management: Implementation Dos and Dont's

[0x6] Identity Management: Critical Components

[0x7] An Introduction to Identity Management

[0x8] Strong Authentication for Online Banking: Success Factors

[0x9] Thinking of Doing Federated Identity Management?

[0xA] The Truth About Federated Identity Management

SecurityInfoWatch Forums - Discussions for the Security Professional

Security discussion forums on topics of security management, policies, guard services, loss prevention, homeland security, alarm systems, network video, security jobs

[0x1] Play Smart with Smart Cards

[0x2] Off Duty cops with Roethlisberger

[0x3] It's going to be a busy week!

[0x4] Aol

[0x5] Your Government

[0x6] Discretion and YOU.

[0x7] Greetings from Australia

[0x8] Why should we hire you?

[0x9] Best motto?

[0xA] LPInformation (NRF) Forums

Security Forums

Security Forums Dot Com :: Share Your Knowledge

[0x1] Linux

[0x2] Longer laptop battery life

[0x3] THE skype's program

[0x4] Detecting Malware

[0x5] free Usenet access

[0x6] Windows Server 2008 R2 remotely created account [hacked]

[0x7] multiple tabs disappear

[0x8] Block keyboard macros on client

[0x9] ActiveX's won't run unless user is Admin

[0xA] please i need urgent help

DarkReading - All Stories

DarkReading

[0x1] Tech Insight: The Keys To Cohesive Encryption In The Enterprise

[0x2] Hackers Not Playing Games With Gaming Sites

[0x3] Malware-Serving ISP Taken Down, Researchers Say

[0x4] Ex-TSA Employee Indicted For Tampering With Database Of Terrorist Suspects

[0x5] New Twitter Feature Looks For Malicious URLs

[0x6] Six Steps To Securing Cloud Computing

[0x7] Top Google Search Items Under Siege

[0x8] Voluntary Breach Disclosure Rare But Valuable

[0x9] Botnets Serving Project Aurora Likely Built By "Amateurs," Researcher Says

[0xA] Ford Motor Rolls Out New Security Features To Prevent Car-Hacking

AskApache Web Fire

.htaccess, Net Security, Server Tech, Web Development, Tutorials and Articles. Come through in something amazing.. blazing.

[0x1] PortaPutty Auto-Reconnecting SSH Tunnels on an Encrypted TrueCrypt Portable USB Key w GPG

[0x2] grilled cheese jam session now online

[0x3] Vetted – Top 3 WordPress Speed Plugins

[0x4] Custom bash_profile for Advanced Shell Users

[0x5] Update: Best Free Online Banking

[0x6] Firefox Add-ons for Web Developers

[0x7] Optimizing Servers and Processes for Speed with ionice, nice, ulimit

[0x8] Windows Optimization – Intense Part II

[0x9] Advanced WordPress wp-config.php Tweaks

[0xA] Protecting Files with Advanced Mod_Rewrite Anti-Hotlinking

Twitter / mssecurity

Twitter updates from Microsoft Security / mssecurity.

[0x1] mssecurity: Microsoft security updates for November 2009 - http://bit.ly/35QaKW

[0x2] mssecurity: Sorry all, automated update pushing hasn't been working too well the last few times. Working on it.

[0x3] mssecurity: Microsoft security updates for October 2009 - http://bit.ly/RgyPY

[0x4] mssecurity: Microsoft security updates for July 2009 http://bit.ly/YUzPo

[0x5] mssecurity: Microsoft security updates for June 2009 http://tinyurl.com/mx8dxn

[0x6] mssecurity: Vista Service Pack 2 Standalone downloads now available - 32-bit http://sn.im/ismow, 64-bit http://sn.im/ismps

[0x7] mssecurity: Microsoft security updates for May 2009 http://tinyurl.com/ogxprk

[0x8] mssecurity: What is a botnet? http://tinyurl.com/oxwot3

[0x9] mssecurity: What is spam? http://tinyurl.com/qe46ka

[0xA] mssecurity: What is identity theft? http://tinyurl.com/r3evar

LinuxSecurity.com: SuSE Advisories

The central voice for Linux and Open Source security news.

[0x1] Study: Spammers use e-mail ID to gain legitimacy

[0x2] Review: Mod-Security 2.5 by Magnus Mischel

[0x3] SuSE: 2010-016: Linux kernel

[0x4] SuSE: 2010-015: Mozilla Firefox

[0x5] SuSE: 2010-014: Linux kernel

[0x6] SuSE: Linux kernel

[0x7] SuSE: Linux kernel

[0x8] SuSE: postfix

[0x9] SuSE: Linux kernel

[0xA] SuSE: Linux kernel

Information Security Thoughts - Allen Baranov

A blog dedicated to thoughts about Information Security.

[0x1] I stand by Gears!

[0x2] The most important piece of software this decade

[0x3] SANS Confirms

[0x4] If you only read one article on Information Security...

[0x5] [OT] Men are chickens**t.

[0x6] [OT] Open Question to Nokia

[0x7] The most important security advice for home users!

[0x8] Quick Tought - The Pelzman Effect

[0x9] ITWeb Security Summit - Day 1 Keynote Reflections

[0xA] ITWeb Security Summit - Reflections (Part 1)

Daniel's Blog

Information security, scuba diving and some other things I am interested in...

[0x1] That “flip” thing

[0x2] MBAs and GMAT

[0x3] Where should you buy it? Try Mustafa*!

[0x4] Bondi got flipped!

[0x5] Are you aware of the new business models which are now available on the web?

[0x6] Hello Merlion!

[0x7] Movember video!

[0x8] Do you also hate telemarketers?

[0x9] Fraud Numbers in Australia. Are we secure?

[0xA] SaaS (Software as Service) Risks

Zend Developer Zone (DevZone) - Advancing the art of PHP

advancing the art of PHP. Best practices, samples, articles, news, and community for PHP 4, PHP 5, and beyond.

[0x1] Pablo Viquez's Blog: Zend Framework Documentation

[0x2] Joseph Crawford's Blog: Zend Framework: Creating RESTful Applications

[0x3] Webinar - New in Zend Framework 1.10!

[0x4] Webinar - Optimizing Drupal: Performance Tips and Benchmarking by Zend and Acquia

[0x5] DZone.com: Q&A with Jason Gilmore: The Zend Framework

[0x6] Ben Scholzen's Blog: Modern Application Design - Part 1

[0x7] Matthew Weier O'Phinney's Blog: Responding to Different Content Types in RESTful ZF Apps

[0x8] Do you queue? Introduction to the Zend Server Job Queue

[0x9] Creating Scalable Vector Graphs with PHP

[0xA] Michael Kimsal's Blog: Zend Framework and Doctrine integration - autoloading of doctrine models

www.rootkit.com

: www.rootkit.com News :

[0x1] Kernel Sockets Module based on TDI and WSK

[0x2] Nostalgia: n00bk1t, an advanced ring3 rootkit in C

[0x3] TDL3 - Why so serious? Let's put a smile on that face ..

[0x4] Access token stealing on Windows

[0x5] DiabloNova's blog: 033: KernelMode.info new place for Ring0 explorations

[0x6] lbs8901's blog: My RootKit Developer...

[0x7] lbs8901's blog: BsRootKit

[0x8] hoglund's blog: HBGary is hiring RE's in 916

[0x9] DiabloNova's blog: 032: Rootkit Unhooker LE 3.8.386.589 SR1 + Some Stuff

[0xA] DiabloNova's blog: 031: Rustock 2010

Deb-Tech

[0x1] A Beautiful Day in the Neighborhood – Except for the Cloud Cover

[0x2] Is the Web becoming too video-centric?

[0x3] Cloudy days ahead: Why Microsoft should find a new name for its online services

[0x4] Has social networking killed the email discussion list?

[0x5] MVPs and Brand Loyalty

[0x6] Beware of fake Firefox updates

[0x7] The new laptop: I went with my heart, not with my head

[0x8] iPad? iDon’tThinkSo

[0x9] Ebook readers in violation of the ADA?

[0xA] Here’s why I ignored your Facebook friend request

SearchSecurity: Threat Monitor

Tactical advice on defending against current threats, including viruses, worms, spyware and bots.

[0x1] Clientless SSL VPN vulnerability and Web browser protection

[0x2] Defending against RAM scraper malware in the enterprise

[0x3] Server Message Block Version 2 security in question: Disable or patch?

[0x4] How to detect software tampering

[0x5] How to prevent phishing attacks with social engineering tests

[0x6] Preventing hacker attacks with network behavior analysis IPS

[0x7] How SSL-encrypted Web connections are intercepted

[0x8] Special Report: How to find jobs in information security

[0x9] How to defend against rogue DHCP server malware

[0xA] How to find and stop automated SQL injection attacks

Security Weekly by Computerworld

Security Weekly by Computerworld

[0x1] CIOs must learn to swim with the sharks

[0x2] Microsoft hustles on IE patch, tests fix

[0x3] HSBC Private Bank: Data of 15,000 clients stolen

[0x4] Viruses and spam an issue on Gnutella p2p network: LimeWire

[0x5] Security industry faces attacks it cannot stop

[0x6] Hackers love to exploit PDF bugs, says researcher

[0x7] Counterfeit card fraud drops by half in the UK

[0x8] Zeus botnet dealt a blow as ISP Troyak knocked out

[0x9] US expert: Chinese gov't likely behind massive cyberattacks

[0xA] Hackers exploit latest IE zero-day with drive-by attacks

Search Engine Watch

Keep updated with major stories about search engine marketing and search engines as published by Search Engine Watch.

[0x1] Did Bing Outsmart Google in Their Real Time Results Strategy?

[0x2] What Does Google Social Search Mean for SEO?

[0x3] Do Top Students Get to Pray in Google Church?

[0x4] Build Links in 30 Minutes a Day

[0x5] SEO vs. PPC Debate -- Which Do You Prefer?

[0x6] Don't Over Optimize Your Site

[0x7] Winning the Multi-Agency Game: Can't We All Just Get Along?

[0x8] Passing The Torch as an SEO Manager

[0x9] Get Your Search Campaigns Ready for the Yahoo/MSN Merger

[0xA] Search Around the World: Italy

Packet Storm Security Tools

Packet Storm Last 10 Tools

[0x1] nuxkeylogger0.0.1.c

[0x2] samhain-2.6.3.tar.gz

[0x3] cookiemonster_v1.6.zip

[0x4] gnupg-2.0.15.tar.bz2

[0x5] fwbuilder-4.0.0.tar.gz

[0x6] tor.uclibc.i686.20100309.iso

[0x7] reverberation.c

[0x8] Ravage.zip

[0x9] reglookup-0.12.0.tar.gz

[0xA] khc_0.2.tar.gz

GlobalSecurity.org

Reliable Security Information from GlobalSecurity.org.

[0x1] Kandahar Governor Appeals for More Troops

[0x2] Blasts rock southern Afghanistan, 35 killed

[0x3] Vulnerable Kandahar Reels After Blasts

[0x4] Pakistani Jets Attack Taliban Positions, Killing 17

[0x5] Israel Seeks to Ease Settlement Dispute with US

[0x6] White House Advisor: Israel Undermining Mideast Peace

[0x7] Israel Arrests Senior Hamas Commander

[0x8] US Mideast Role Under Scrutiny in Congress

[0x9] Fake Report Of Russian Invasion Sparks Anger In Georgia

[0xA] Georgian opposition to sue TV channel over fake invasion report

LWN.net comments

This feed contains the text of all comments posted to the LWN.net site.

[0x1] Sigh. Don't they look mac-like?

[0x2] Proper market regulation

[0x3] Meet Ubuntu Linux's new CEO (Q&A) (CNET)

[0x4] Apple's patent attack

[0x5] Schwartz: Good Artists Copy, Great Artists Steal

[0x6] 4K-sector drives and Linux

[0x7] Google's RE2 regular expression library

[0x8] QOTW 2: the zombie edition

[0x9] Something is very *wrong* here

[0xA] Something is very *wrong* here

CSOONLINE.com - Identity Theft

[0x1] Delayed Again: Red Flags Rule Deadline Now June 1, 2010

[0x2] A Look At Stolen Hotmail Data Finds Simple Passwords

[0x3] School Boards Hit with Cash-Stealing Trojan

[0x4] News Flash: Data Debauchery That Happens in Vegas Doesn't Stay There

[0x5] Hacker Gonzalez Pleads Guilty to 20 Charges

[0x6] SQL injection Attacks Led to Heartland, Hannaford Breaches

[0x7] Mass. Makes Changes to ID Theft Regulations

[0x8] LexisNexis Warns of Breach After Alleged Mafia Bust

[0x9] Report: Social Security Numbers Easy to Guess

[0xA] Seven Deadly Sins of Social Networking Security

Computer Security News

News on Computer Security continually updated from thousands of sources around the net.

[0x1] Secure mobile access to the cloud with StoneGate Virtual SSL VPN 1.4

[0x2] Investigating the cyber attack on Google

[0x3] Interop Technologies Names Eddie DeCurtis as Vice President of Asia-Pacific Sales

[0x4] St. Louis Police Department Victim Of Cyber-Attack

[0x5] Cyberattacks raise e-banking security fears

[0x6] China Stepping Up Cyber Attacks

[0x7] St. Louis Police Department computer hacked in cyber attack

[0x8] Real-time Steganography Analyzer Upgraded

[0x9] Microsoft Fixes Eight Bugs, Warns Of IE Zero-Day

[0xA] IE zero-day exploit code goes public

AVG Top Threats

Latest security threats

[0x1] Downadup/Conficker worm

[0x2] I-Vers/Nuwar

[0x3] I-Vers/Nuwar

[0x4] I-Worm/Nuwar

[0x5] Win32/Mabezat.A

[0x6] Downloader.Tibs

[0x7] Trojan Downloader.Agent.UZM

[0x8] I-Worm/Stration downloader

[0x9] I-Worm/Stration downloader

[0xA] Stration downloader

[H]ardOCP News/Article Feed

News/Article Feed for [H]ardOCP

[0x1] Play Xbox360 Games On iPhone and Android

[0x2] Is the Future of the Internet Criminal in Nature?

[0x3] 3-D on the Cheap: $50 Makes iPhone Stereoscopic

[0x4] Cyberfraud Doubled in 1 Year

[0x5] FTC Slams LifeLock with $11 Million Fine

[0x6] iPad Swapping out the Charge?

[0x7] The Internet's Richest People

[0x8] Apple, Why Do You Hate Me So?

[0x9] Robo-Surgeons?

[0xA] Happy Pi Day

Network Security Podcast

The Network Security Podcast

[0x1] Listener Survey for the podcast

[0x2] The Network Security Podcast, Episode 188

[0x3] RSAC2010: Sourcefire

[0x4] RSAC2010: ISC2

[0x5] RSAC2010: Kaspersky Lab

[0x6] RSAC2010: Astaro Internet Security

[0x7] RSAC2010: F-Secure

[0x8] RSAC2010: Panda Security

[0x9] Network Security Podcast, Episode 187

[0xA] RSAC2010: ICSA Labs

CNET News.com

Tech news and business reports by CNET News. Focused oninformation technology, core topics include computers, hardware, software,networking, and Internet media..

[0x1] Privacy is not dead, says SXSWi keynoter Boyd

[0x2] Microsoft races to plug IE hole after exploit code released

[0x3] When malware strikes via bad ads on good sites

[0x4] ISP interruptions trip up Zeus botnet

[0x5] Researcher publishes exploit for new IE hole

[0x6] LimeWire enlists AVG for user protection

[0x7] Twitter to block malicious links

[0x8] WhitePages.com halts ad networks over malware

[0x9] LifeLock to pay $12 million to settle deceptive-practices claim

[0xA] Malware found on HTC Android phone from Vodafone

Netcraft

[0x1] New browser reports over half of SSL sites may be unsafe

[0x2] Most Reliable Hosting Company Sites in February 2010

[0x3] February 2010 Web Server Survey

[0x4] Most Reliable Hosting Company Sites in January 2010

[0x5] January 2010 Web Server Survey

[0x6] National Rail website affected by snow

[0x7] Most Reliable Hosting Company Sites in December 2009

[0x8] December 2009 Web Server Survey

[0x9] Most Reliable Hosting Company Sites in November 2009

[0xA] 24 of the 100 top HTTPS sites now safe from TLS renegotiation attacks

cryptography on SWiK

[0x1] SuperGenPass: Un bookmarklet generador de contraseñas libre

[0x2] Introduction

[0x3] Benlog » Don’t Hash Secrets

[0x4] TrueCrypt - Free Open-Source On-The-Fly Disk Encryption Software for Windows 7/Vista/XP, Mac OS X and Linux

[0x5] openssh-lpk - Project Hosting on Google Code

[0x6] Andrew Hoyer | Quantum Cryptography

[0x7] Cryptography - Wikibooks, collection of open-content textbooks

[0x8] 1024-bit RSA encryption cracked by carefully starving CPU of electricity -- Engadget

[0x9] SQLCipher - Full Database SQLite Encryption

[0xA] SQLCipher - Full Database SQLite Encryption

Network World on Wireless Security

The latest wireless security news and analysis from NetworkWorld.com.

[0x1] Cisco Unveils AnyConnect Secure Mobility

[0x2] How Wi-Fi attackers are poisoning Web browsers

[0x3] Pros and Cons of Windows 7 Security

[0x4] MS Provides Guidance on Windows 7 Zero-Day Vulnerability

[0x5] Shifting mobile cost to employees? Think twice

[0x6] Shifting mobile cost to employees? Think twice

[0x7] Protect Your PCs from Windows 7's Zero-Day Exploit

[0x8] A Guide to Windows 7 Security

[0x9] Protect Your Network With an Open-Source Firewall

[0xA] The Wacky World of WiFi

Antionline Forums - Maximum Security for a Connected World

AntiOnline Forums - Computer security community for internet safety and trusted networks

[0x1] Yeah

[0x2] Sup

[0x3] Motherboard needed

[0x4] An important choice to make: your browser

[0x5] Twitter to begin screening some links for phishing

[0x6] Off the wall March 9/2010 now out.

[0x7] Update Protection against Microsoft Internet Explorer iepeers.dll Remote Code Execut

[0x8] a few Microsoft Security bulletin's

[0x9] What Happened?!?

[0xA] *HEADS UP* - Opera Unpatched Vulnerability - Affects 10.50

Casper Dik's Weblog

Casper Dik's Weblog

[0x1] OGP election

[0x2] NLOSUG: 26/10/2006 Dutch OpenSolaris User Group First Meeting

[0x3] Updated drivers: but only at www.opensolaris.org

[0x4] Small acpidrv update

[0x5] OpenSolaris User Group Meeting, Amsterdam, October 18th

[0x6] Laptop community live!

[0x7] Laptops

[0x8] First Installment (of frkit)

[0x9] User Credentials and all that

[0xA] Southpark Stdio

CGISecurity - Website and Application Security News

All things related to website, database, SDL, and application security since 2000.

[0x1] Random FireFox URL handling Behavior

[0x2] Cryptography experts bicker with former NSA director at RSA panel

[0x3] Web Security Dojo v1.0 release

[0x4] Watcher 1.3.0 passive Web-vulnerability testing tool released

[0x5] XSS, SQL Injection and Fuzzing Barcode Cheat Sheet

[0x6] Multiple Adobe products vulnerable to XML External Entity Injection And XML Injection

[0x7] Post on Abusing Windows Communication Foundation to Perform Remote Port Scans

[0x8] 2010 SANS Top 25 Most Dangerous Programming Errors Released

[0x9] Larry Suto Web Application Security Scanner Comparison Report Inaccurate Vendors Say

[0xA] R.I.P. Apache 1.x: Apache 1.3.42 marks of end life

Irongeek's Security Site

Irongeek.com, Adrian Crenshaw's Information Security site (along with a bit about weightlifting and other things that strike my fancy). Home of my articles and videos on computer security. As I write articles and tutorials I will be posting them here. If you would like to republish one of the articles from this site on your webpage or print journal please e-mail me. Enjoy the site and write us if you have any good ideas for articles or links.

[0x1] Security Podcasts Page Updated

[0x2] Attacking and Defending WPA Enterprise Networks - Matt Neely

[0x3] InfoSec Daily Podcast Episode 80

[0x4] Steganography: The art of hiding stuff in stuff so others don’t find your stuff

[0x5] Unicode and LSB Steganography program examples

[0x6] Side-Track: Security/Pen-testing distribution of Linux for the ZipIt Z2

[0x7] FireTalks from Shmoocon 2010

[0x8] I'll be at Shmoocon tomorrow, may have a live stream up some of the time

[0x9] XSS, SQL Injection and Fuzzing Barcode Cheat Sheet Updated

[0xA] When Web 2.0 Attacks - Rafal Los

Aladdin Knowledge Systems Latest eToken Press Releases

Aladdin Knowledge Systems Latest eToken Press Releases - RSS Feed

[0x1] Ontario's York Regional Police Meet Canadian Government Regulations with Aladdin eToken

[0x2] Russian Bank Secures Online Banking with Aladdin Authentication

[0x3] Aladdin eToken Solidifies Its Position in Government Sector on Carahsoft GSA Schedule

[0x4] Aladdin eToken and Aladdin SafeWord are Verified as Citrix Ready

[0x5] Aladdin and Wyse Partner to Secure Virtual Desktops

[0x6] Korea's Largest Bank Deploys 5,000 Aladdin eToken Authentication Devices

[0x7] Aladdin Secures Transactions for China's Largest Online Financial Information and Services Provider

[0x8] Aladdin eToken Debuts New Generation of Strong Authentication Solutions

[0x9] Toronto-Area Police Secure Data and Meet CPIC Regulations with Aladdin eToken

[0xA] Secure Computing Named Reader Trust Finalist in SC Magazine Award Program and Best of 2006 in Three Categories

Leadership 101

Enhancing Global Leadership from the Inside-Out.

[0x1] Executive Hires...

[0x2] The Voice Of A Leader... Part II

[0x3] The Voice Of A Leader...

[0x4] Effortless Leadership... Part III

[0x5] Effortless Leadership... Part II

[0x6] Effortless Leadership...

[0x7] Maximizing The Holidays...

[0x8] Leading During The Holidays...

[0x9] Growing Through Sports...

[0xA] The Traveling Leader...

PCI Security Standards Council News

Latest press releases from PCI SSC

[0x1] Bruce Rutherford Named New PCI Security Standards Council Chairperson

[0x2] PCI Security Standards Council Launches Global Website With New Resources In Eight Languages

[0x3] PCI Security Standards Council Opens Ask The Council Webinar To All

[0x4] PCI Security Standards Council Enters Next Phase of Data Security Standards Development

[0x5] PCI Security Standards Council Provides Best Practices For Skimming Prevention

[0x6] PCI Security Standards Council Wireless Special Interest Group Publishes New Giude to Wireless Security

[0x7] PCI Security Standards Council Appoints Lead Trainer

[0x8] PCI Security Standards Council Invites Collaboration On Next Generation Security Standards

[0x9] PCI Security Standards Council Announces New Board Of Advisors

[0xA] PCI Security Standards Council to Hold First Standards Training Session in Asia Pacific

PandaLabs Blog

everything you need to know about Internet threats

[0x1] Demonstrating the Latest IE 0-day Vulnerability

[0x2] Mariposa Stats

[0x3] Vodafone distributes Mariposa-like bot

[0x4] The Thousand-Faced Rogue

[0x5] Mariposa botnet

[0x6] Rogueware competing with Panda

[0x7] Deceiving Flash Player Update

[0x8] Teaching Some Security. Asking for help!

[0x9] The biggest case of user failure in history?

[0xA] Rogueware competing with Microsoft

LinuxSecurity.com: Ubuntu Advisories

The central voice for Linux and Open Source security news.

[0x1] Study: Spammers use e-mail ID to gain legitimacy

[0x2] Review: Mod-Security 2.5 by Magnus Mischel

[0x3] Ubuntu: 907-1: gnome-screensaver vulnerabilities

[0x4] Ubuntu: 906-1: CUPS vulnerabilities

[0x5] Ubuntu: 905-1: sudo vulnerabilities

[0x6] Ubuntu: 903-1: OpenOffice.org vulnerabilities

[0x7] Ubuntu: Pidgin vulnerabilities

[0x8] Ubuntu: XML-RPC for C and C++ vulnerabilities

[0x9] Ubuntu: Firefox 3.0 and Xulrunner 1.9 vulnerabilities

[0xA] Ubuntu: Firefox 3.5 and Xulrunner 1.9.1 vulnerabilities

An Expert's Guide to Database Solutions

Experienced DBA, Strategist, Architect, and Performance Expert James Koopmann provides information, guidance, technical savvy, and solutions for your database needs.

[0x1] Oracle AUM - a lesson in why you should be using

[0x2] Oracle AUM - something you should be using

[0x3] Providing proper access to Oracle's data dictionary

[0x4] High-level CPU consumption using Oracle's Time Model

[0x5] Did you like the mud slung by Oracle this last week?

[0x6] Oracle Statistics; Are we going backwards

[0x7] Email campaign to stop the Oracle/Sun deal

[0x8] Are we out of the recession yet?

[0x9] How is your 2010 shaping up to be?

[0xA] My top 10 list for DBAs in 2010

Reformed(?) Hacker

[0x1] Lessons learned from a vendor

[0x2] Wiki tab sweep

[0x3] Graph processing

[0x4] Tab Sweep: Search

[0x5] Identifier Tab Sweep

[0x6] When two people know less than one

[0x7] Typical scaling progression for a large website

[0x8] Scalr

[0x9] Standalone, Java implementation of Bloom Filters

[0xA] Standalone, Java implementation of Cuckoo Hashing

ZDI: Upcoming Advisories

Upcoming Advisories

[0x1] ZDI-CAN-711: Apple

[0x2] ZDI-CAN-702: Apple

[0x3] ZDI-CAN-691: Apple

[0x4] ZDI-CAN-689: Apple

[0x5] ZDI-CAN-688: Apple

[0x6] ZDI-CAN-687: Apple

[0x7] ZDI-CAN-704: Apple

[0x8] ZDI-CAN-703: Apple

[0x9] ZDI-CAN-696: Adobe

[0xA] ZDI-CAN-693: Mozilla Firefox

ComPly With Me--- a HIPAA Forum

[0x1] 3 I's

[0x2] Blue Suit, Red Cape and Red Boots

[0x3] International Talk Like a Pirate Day!

[0x4] Ah, Sweet Mystery

[0x5] Baby One More Time

[0x6] Over and over

[0x7] My Way

[0x8] Time After Time

[0x9] It Wasn't Me

[0xA] Secret Love

InternetNews Realtime News for IT Managers

All the top news, features, analysis and insight into enterprise and Internet technology, geared for IT managers and delivered by the best in the industry.

[0x1] Google Warned Against Challenging China's Laws

[0x2] Apple's COO Tim Cook Gets $22M Pat on the Back

[0x3] Twitter Takes Geo-Location Feature Live

[0x4] Microsoft Loses Another Round in i4i Case

[0x5] Apple off to a Smooth Start With iPad Launch

[0x6] Google Offers Local Product Availability Search

[0x7] McAfee's Got the Skinny on Scareware

[0x8] Awareness Helps Firms Manage Social Networks

[0x9] Windows Mobile Still Losing Share

[0xA] Bing Coming to Motorola Android Handsets

FaceTime Communications - Press Releases

Press releases from FaceTime.

[0x1] FaceTime Survey Reveals 38% of IT Managers Ignoring Web 2.0 Risks

[0x2] FaceTime IMAuditor, Finalist for Best Security Solution for Financial Services

[0x3] IBM Software Services for Lotus to Resell FaceTime Communications Security and Compliance Solutions

[0x4] IBM Software Services for Lotus to Resell FaceTime Communications Security and Compliance Solutions

[0x5] FaceTime and YellowJacket Partner for Enhanced Energy Trading Compliance

[0x6] FaceTime Communications Names Tim Conley CFO

[0x7] FaceTime Wins Financial-i Leaders in Innovation Award for Messaging Compliance

[0x8] FaceTime Explores Social Media Compliance for Government Agencies at Gov 2.5 Conference

[0x9] FaceTime Adds Squid Proxy Support to Unified Security Gateway to Extend Enterprise Security for Web 2.0 Platforms

[0xA] FaceTime's application database acquisition highlights need for Web 2.0 control and security

Panda Research Blog

Leading the way in proactive malware detection

[0x1] Panda Cloud Test File

[0x2] Vodafone distributes Mariposa botnet

[0x3] Spam Honeypot Catch

[0x4] Panda @ AV-Comparatives

[0x5] Blog Comment Spam Honeypot

[0x6] OT: Vacation

[0x7] Arguments against cloud-based antivirus

[0x8] New Panda Research Blog Style

[0x9] Panda Security Compatibility with Windows 7

[0xA] Panda Security Days in Sweden 09

CAcert NEWS Blog

CAcert NEWS and up coming events.

[0x1] What’s this ATE thing then???

[0x2] ATE-Sydney

[0x3] Two Weeks to go! CAcert at OpenExpo 2010 Bern - Switzerland - March 24.-25. 2010

[0x4] ate-OZ

[0x5] Thawte Points Transfer and Removal of Points at Nov 16th 2010

[0x6] CeBIT 2010 closed - Co-Audited Assurances Program Launch

[0x7] Community 2010 February Update

[0x8] Linux Release Party May 29th 2010 - Reehorst, Ede, Netherlands

[0x9] May 6th 2010, NLUUG Spring Conference - System administration, Ede - Netherlans

[0xA] CAcert zu Gast bei Linux New Media auf der CEBIT 2010, Halle 2, Stand F34

Executive Spotlight Podcasts

Listen online, download to your computer, or subscribe and get the latest information automatically.

[0x1] CIO Digest January 2010 Preview: An Interview with Patrick Spencer, Editor-in-Chief

[0x2] Executive Spotlight Podcast: Interview with David Thompson, CIO, Symantec - Part 3

[0x3] Executive Spotlight Podcast: Interview with David Thompson, CIO, Symantec - Part 2

[0x4] Executive Spotlight Podcast: Interview with David Thompson, CIO, Symantec - Part 1

[0x5] Interview with Tom Place, Director of Global Technology and Information Security, The Coca-Cola Company

[0x6] Interview with Tapio Saarelainen, Head of Group IT, Nordea Bank

[0x7] Interview with Massoud Sedigh, Global CIO, World Fuel Services

[0x8] Interview with Anthony Collis, ICT Manager, Australian Sports Commission

[0x9] Interview with Jeffrey Smith, CIO, Golden Temple

[0xA] Backup & Recovery Business Value Market Research Report

Security Justice

Security Justice

[0x1] Security Justice Episode 22 – Physical Security, Interview with a Locksmith

[0x2] Shmoocon and how to protect yourself from Shmooball attackers!

[0x3] Security Justice Episode 21 – Woot.com, Hack Challenge, @dave_rel1k and SET

[0x4] Security Justice Episode 20 – Shmoocon 2010 Interview with Bruce Potter (@gdead)

[0x5] Security Justice Episode 19 – Epic Interview with Jason Scott (@textfiles)

[0x6] Select Talks from ISS2009 Now Available for Download

[0x7] Security Justice Special Edition – Interview with Richard Bejtlich (@taosecurity)

[0x8] Security Podcasters “Go the Mo” for Men’s Health

[0x9] Security Justice Special Edition – Jayson Street and Dissecting the hack: the f0rb1dd3n network

[0xA] Security Justice Episode 18 – Louisville InfoSec, Rapid7, Interview with Wesley McGrew

DRJ Current Articles

Current Articles from Disaster Recovery Journal

[0x1] Business Continuity in Emerging Markets

[0x2] Computer based Modeling and Simulation for BC/DR

[0x3] Fraud: An Overlooked Risk

[0x4] Words Count in Emergency Notification

[0x5] 'Auld Lang Syne' - Forging the Link and Building the Chain

[0x6] DRI International’s Participation in the RIMS-PERK

[0x7] Following the Path of Downward Resiliency

[0x8] Lessons Learned By Flood Repair of Electrical Equipment

[0x9] Perfect Practice Makes Perfect

[0xA] Increasing the Value of DR in Everyday Operations

EduGeek.net Forums

EduGeek.net - The educational I.T. professionals' life line

[0x1] Slightly controversial post on Learning Gateway User Group

[0x2] Backup Exec not overwriting

[0x3] IMS Repository access in Moodle

[0x4] DMS netflow

[0x5] Services your classroom PCs don't need

[0x6] Anyone have an MSI for a PDF creator?

[0x7] [Website] Get paid £24,000 to do nothing but eat!

[0x8] Ethernet Coupler

[0x9] Windows Key Stopped working.

[0xA] SIMS TimeTable Printing Access Denied

Boaz Gelbord

A look at information security management, spending in the security industry, and everything along the way.

[0x1] Security Scoreboard is Live!

[0x2] Mass Security Regulation Gets Tech Priorities Wrong

[0x3] YouSendIt Indictment is a Cloud Warning

[0x4] SEC eyes Identity Theft

[0x5] Visa Embraces End-to-End Encryption

[0x6] https Can Wait - SaaS Needs Better Authentication First

[0x7] OWASP Security Spending Benchmarks Project Report for Q2 Published

[0x8] Nevada Mandates PCI Standard, Part II

[0x9] Nevada Mandates PCI Standard

[0xA] Opera Invites You to Join the Cloud

FaceTime Security Labs

The latest information on threats and vulnerabilities affecting IM and P2P.

[0x1] W32/Autorun.worm.zzo (Low)

[0x2] StonedBootkit.dr (Low)

[0x3] Ransom-J (Low)

[0x4] Spam-Mailbot!3F4D5065 (Low)

[0x5] FakeAlert-DI (Low)

[0x6] Generic FakeAlert!htm (Low)

[0x7] FakeAlert-DA (Low)

[0x8] FakeAlert-EL (Low)

[0x9] BackDoor-DTX (Low)

[0xA] Downloader-BRM (Low)

DarkReading - All Stories

DarkReading

[0x1] Tech Insight: The Keys To Cohesive Encryption In The Enterprise

[0x2] Hackers Not Playing Games With Gaming Sites

[0x3] Malware-Serving ISP Taken Down, Researchers Say

[0x4] Ex-TSA Employee Indicted For Tampering With Database Of Terrorist Suspects

[0x5] New Twitter Feature Looks For Malicious URLs

[0x6] Six Steps To Securing Cloud Computing

[0x7] Top Google Search Items Under Siege

[0x8] Voluntary Breach Disclosure Rare But Valuable

[0x9] Botnets Serving Project Aurora Likely Built By "Amateurs," Researcher Says

[0xA] Ford Motor Rolls Out New Security Features To Prevent Car-Hacking

Network-7

Recruiting for The Cyberwar

[0x1] Skype Vulnerability Discovered/Patched

[0x2] Whitepages.com and Drudge Report/Senate Security Issues

[0x3] Cloud Computing Dependent on Security

[0x4] Geospatial Potential Killer App

[0x5] IBM and U.S. Air Force to Prove Cloud Computing (Let the Chinese test it)

[0x6] Zero-day vulnerability in IE 6 and 7 (and these with 70% of the browser mkt)

[0x7] U.S. would lose a cyber war, former intell chief warns

[0x8] The human element complicates cybersecurity

[0x9] Certifications Are No Longer Optional

[0xA] 6 security trends to watch in 2010

Free IT - Data Management Magazines and Downloads from bestsecuritytips.tradepub.com

Free publications and offers about databases and data management.

[0x1] Gartner Report: Storage Efficiency Puts SSD on the Map

[0x2] More Data Doesn't Always Mean More Cost

[0x3] Three Must Haves for the Virtual Data Center

[0x4] Five Ways to Lower SAN Administration to Three Hours a Week

[0x5] Transforming Business Continuity with Virtualized Servers and Storage

[0x6] Fluid Data Storage Drives Flexibility in the Data Center

[0x7] Bloor Research White Paper: Loading and Analyzing Web Data

[0x8] A Greener Planet Starts with Smarter IT

[0x9] Cost Effective Security and Compliance with Oracle Database 11g Release 2

[0xA] Case Study: Yarra Valley Water (YVW) Turns to Enterprise Software to Improve Information Flow

InformationWeek Analytics Weblog

Here you'll find observations, anecdotes, and analysis from our experienced staff of reporters and editors, with links to stories, surveys and other content that appear on InformationWeek.com, TechWeb.com, and many other points on the Web. We welcome discussion, and invite you to share your opinions and thoughts. Please participate with us!

[0x1] The Best Deal On IT Research -- Period

[0x2] What's Your Outsourcing Vision?

[0x3] Smoke And Mirrors Pricing Stifles PPM Tool Adoption

[0x4] Misguided Security Leads To Insecurity

[0x5] Cybercrime As An Economic Threat

[0x6] I Want You For My Server Survey

[0x7] Barracuda Networks Enters the Enterprise Firewall Market

[0x8] Linux's Hypervisor Complex

[0x9] InformationWeek's RSS Feed is brought to you by

[0xA] Your Dad's SLAs And The Cloud

BreakingPoint Labs Blog

BreakingPoint Labs Blog

[0x1] Resiliency. Don't Leave Home Without It

[0x2] From the Floor at RSA 2010: Real-World Mobile Network Traffic Validation

[0x3] Replace Vendor Assurances With Measurable Answers

[0x4] Testing and Validation of Network Security Devices

[0x5] Proxies

[0x6] Application Protocol Fuzzing

[0x7] Anti-Malware

[0x8] Application Servers

[0x9] Load Balancers

[0xA] Firewalls

HSC Security Portal

Hackers Center Security Portal is one of the most complete, updated and visited Securty portals on the net. We offer Security Blogs, Exploits, Texts, Tools

[0x1] Scrubyt 0.4

[0x2] Sahi V3

[0x3] UrlParams 2.2.0

[0x4] TemperIE

[0x5] Nikto 2

[0x6] hcraft 1.0.0

[0x7] MSNPawn 1.1

[0x8] httprint

[0x9] DIRB

[0xA] WebInject 1.4

Infosec Writers Latest Security Papers

Papers submitted by security professionals are published on the site and archived for readers. Categories include cryptography, E-mail security, exploitation, firewalls, forensics, honeypots, IDS, malware & wireless security.

[0x1] The Phishing Guide

[0x2] Shedding Light on Quantum Cryptography

[0x3] Securing a Virtual Environment

[0x4] Investigating the SANS/CWE Top 25 Most Dangerous Programming Errors List

[0x5] Hacking Tools & Techniques and How to Protect Your Network from Them

[0x6] Computer Forensics: Breaking Down the 1’s and 0’s of Cyber Activity for Potential Evidence

[0x7] Steps Involved in Exploiting a Buffer Overflow Vulnerability using a SEH Handler

[0x8] Exploring Below the Surface of the GIFAR Iceberg

[0x9] Anatomy of an XSS Attack

[0xA] Failed: Information Security and Data Protection in a Consumer Digital World

ThinkGeek :: Clearance Products

Stuff for Smart Masses - Clearance Items

[0x1] DotCom - Alcohol & calculus don't mix. Never drink & derive.

[0x2] Think Globally

[0x3] Refill Required

[0x4] Port 80 Football Jersey

[0x5] OMG Pwnies Women's Classic Cut

[0x6] more beer

[0x7] Little Tux Babydoll Tee

[0x8] Edward Scissorhands Schematic Babydoll

[0x9] Control-a-Man & Control-a-Woman Remote Controls

[0xA] Pirateology Guidebook and Pirate Ship Model Set

ha.ckers.org web application security lab

Web Application Security Blog

[0x1] Conversations With a Blackhat

[0x2] Using Parameter Pollution and Clickjacking to Aid Anti-CSRF Bypass

[0x3] RSA Conference Wrapup

[0x4] Facebook Patents Social Feeds and I Patent XSS

[0x5] Banks, Businesses, Viruses and the UCC

[0x6] Google Buzz Security Flaw

[0x7] Nevermind, I Was Wrong, Google Is Evil

[0x8] Phishing With Google Wave

[0x9] Releases.mozilla.org SSL and Manual Update Fail

[0xA] Accuracy and Time Costs of Web Application Security Scanner Report

StoneBlog.stonesoft.com

Share knowledge about StoneGate

[0x1] StoneGate and iPads

[0x2] CVE-2010-0806: IE 6&7 exploited in the wild – no patches available

[0x3] MultiLink VPN works, it just does.

[0x4] Enabling Cloud Computing

[0x5] The power of form-based Single Sign-On… in 8 steps

[0x6] I have my certificate, do I need anything else?

[0x7] User Storage in StoneGate SSL VPN

[0x8] Advanced Certificate to User Attributes Mapping in SSO

[0x9] StoneGate 5.1: IPsec VPN Client enhancements

[0xA] SSL VPN 1.4 Feature Previews

lkml.org :

lkml.org - the realtime linux kernel mailinglist archive

[0x1] Re: [PATCH -mm] ssb: open-code dma_alloc_coherent

[0x2] Re: [PATCH -mm] ssb: open-code dma_alloc_coherent

[0x3] [PATCH] ssb: Fix CONFIG_SSB_SDIOHOST typo

[0x4] Re: [PATCH] strcmp: fix overflow error

[0x5] Re: 64-bit DMA problems with BCM4312 using b43

[0x6] Re: CVE-2009-2584

[0x7] Re: pull request: wireless-next-2.6 2009-10-28

[0x8] Re: pull request: wireless-next-2.6 2009-10-28

[0x9] Re: [Bug #14278] New message "NOHZ: local_softirq_pending 08" at e ...

[0xA] Re: NOHZ: local_softirq_pending 08

CSOONLINE.com - Critical Infrastructure

[0x1] Chertoff: Tracing Attack Source Key to Cybersecurity Strategy

[0x2] Sinking to Their Level: Protecting Municipal Infrastructure

[0x3] The Bumbling Airline Bomber, Stupid Reactions, and 8 Real Security Takeaways

[0x4] Security and Building Design: What Changed in This Decade

[0x5] Digital Security Stalled as Obama Eyes Afghanistan

[0x6] I Was Wrong: There Probably Will Be an Electronic Pearl Harbor

[0x7] How 9-11 Shaped Hoover Dam Security Operations

[0x8] Hoover Dam Security in Pictures

[0x9] Report: China Ready for Cyberwar, Espionage

[0xA] Charitable Risk: Security Challenges of the Bill and Melinda Gates Foundation

Packet Storm Security Exploits

Packet Storm Last 10 Exploits

[0x1] joomlaseek-sql.txt

[0x2] CVE-2010-0188.py.txt

[0x3] joomlaraces-sql.txt

[0x4] joomlasbsfile-lfi.txt

[0x5] joomladgreinar-xss.txt

[0x6] onlineshop-lfi.txt

[0x7] azeno-sql.txt

[0x8] joomlajulia-lfi.txt

[0x9] stats-poc.py.txt

[0xA] bsdftpd-dos.txt

Network Security Blog

Join me as I spend 30 minutes each week talking about the computer security issues facing us today. I discuss privacy, hacking, malware and the Payment Card Industry (PCI) Data Security Standards.

[0x1] Listener Survey for the podcast

[0x2] Video from the first day of RSA2010

[0x3] The Network Security Podcast, Episode 188

[0x4] RSAC2010: Sourcefire

[0x5] RSAC2010: ISC2

[0x6] RSAC2010: Kaspersky Lab

[0x7] RSAC2010: Astaro Internet Security

[0x8] RSAC2010: F-Secure

[0x9] Network Security Podcast, Episode 187

[0xA] RSAC2010: Panda Security

Fortinet FortiGuard Blog

The latest news and information about Fortinet products and services for Real Time Network Protection.

[0x1] Cryptanalysis of the Sasfis Registry Key

[0x2] February 2010 Threatscape: Ransomware Rampant, Fueled by Cutwail

[0x3] On balance, is it still UTM?

[0x4] SymbOS/Yxes goes version 2

[0x5] It’s secure, but is it easy?

[0x6] API Resolution in W32/Bredolab.AC!tr.dldr

[0x7] RSA Conference: Ransomware and Industrial Spying

[0x8] Web Filtering: A Flexible Service

[0x9] Kneber: Another day at the office

[0xA] Web Filtering: Controlling the Flow

My Security Planet

My Security Planet

[0x1] ha.ckers.org web application security lab: Conversations With a Blackhat

[0x2] Suspekt...: Zend Webinar: Sichere Applikationen auf Basis des Zend Frameworks

[0x3] Sunnet Beskerming Security Advisories: New Public Vulnerability Affects Internet Explorer 6 and 7 Users

[0x4] Ian Bicking: a blog: What Does A WebOb App Look Like?

[0x5] Transcendental Technical Travails: This blog has moved

[0x6] Schneier on Security: Friday Squid Blogging: Cipherlopods

[0x7] Schneier on Security: Another Schneier Interview

[0x8] GDS Security Blog: Multiple DOM-Based XSS in Dojo Toolkit SDK

[0x9] Schneier on Security: Why DRM Doesn't Work

[0xA] terminal23: talk about a security mistake, get booted

Adventures in Security

Commentary, reviews, and tips relevant to anyone responsible for information security. Including how to build and manage a security program, editorials about the state of information security, and do's and don't's based on my 26 years of IT experience.

[0x1] Access Controls are Only the First Step

[0x2] Data Breach Events: Plan Ahead

[0x3] Hardened Systems v. Software Quirks

[0x4] No, we will never catch all the crooks

[0x5] The App Store of the Future?

[0x6] A Long, Long Road...

[0x7] Use EMET to Protect Productivity Apps

[0x8] U.S. Cyber-warfare defense: The weak link

[0x9] Just say NoVirusThanks: Free Malware Analysis Service... and more

[0xA] Cloud Computing Security: It ain't that hard

Diary of Michael Daw

Weekly humour

[0x1] IIS 6.0 WebDav Exploit, Adobe 8-9.1 JavaScript Exploits, Cisco Works TFTPD Directory Traversal

[0x2] Universal XSS Vulnerability in Google

[0x3] Diffie-Hellman-Branston Key Exchange

[0x4] TCP/IP Security Assessment, FreeBSD Telnet 0-Day, RainbowCrack 1.3, Nokia N95 DoS, Bounty for Worm Author

[0x5] Hacker News: Backtrack 4 Beta, Web Services Testing, Monster Hacked and More

[0x6] IWAS-P Hero Dies Before Conference

[0x7] Pwntry

[0x8] 10 must have tips for infosec people

[0x9] Asking for trouble…

[0xA] Super Duper Invisible Trojan

security_watchdog

All the IT security issues that affect you and your business. Direct reports from all the security conferences throughout the year, including RSA conference and Infosec.

[0x1] Google: complete privacy 'does not exist'

[0x2] Kiwi hacker to work for police

[0x3] Data leaks worst security threat

[0x4] UK businesses still don’t ‘get’ security

[0x5] Storm worm fabricates news

[0x6] Road warriors leaking secrets

[0x7] Cyber-crooks sting South Africa for £13m

[0x8] Public wants data breach legislation

[0x9] Hong Kong becomes most dangerous domain

[0xA] Scammers targeting LinkedIn

InformationWeek Security News

InformationWeek

[0x1] China Warns Google To Obey Law

[0x2] Apple iPad Available For Pre-Order

[0x3] InformationWeek's RSS Feed is brought to you by

[0x4] GDC: Developers Vs. Cybercriminals

[0x5] Former TSA Worker Charged With Hacking

[0x6] GDC: iPhone Developers Face Hidden Risks

[0x7] Army Plans Massive E-mail Consolidation

[0x8] LifeLock Settles FTC Charges For $12 Million

[0x9] Google Launches Store For Web Apps

[0xA] Microsoft Fixes Eight Bugs, Warns Of IE Zero-Day

Learning Solaris 10

Check out the Zones F.A.Q. !

[0x1] CentOS 3.9 running in an lx branded zone

[0x2] OpenSolaris & Sun Secure Global desktop

[0x3] Opensolaris & wifi Broadcom BCM4312 on Dell Vostro 1710

[0x4] Security Advantages of the Solaris Zones Software

[0x5] Understanding the Security Capabilities of Solaris Zones Software

[0x6] New blueprint over the M-Series servers configuration

[0x7] Sun Forums: A Sun Java System Web Server 7.0 Reference Deployment

[0x8] Network virtualization in Solaris : project Crossbow

[0x9] Setting Up OpenDS 1.0.0 as a Naming Service

[0xA] Sun Fire X4500 as a Media Server for Symantec Veritas NetBackup 6.5

C skills

A blog dedicated to software and network trickery.

[0x1] Playing with URL shortening

[0x2] New injectso -- Debian proof

[0x3] Runtime hot-patching processes w/o ptrace

[0x4] Thoughts on companion worms

[0x5] Always check return value!

[0x6] Adventures in Heap Cloning

[0x7] xorl blog seems to be up again

[0x8] injectso 32bit x86 port

[0x9] New injectso available

[0xA] unixdump UNIX-socket sniffer available

Moreover Technologies - Computer security news - 30 of 6868 returned

Moreover Technologies - Real-time news and blogs from thousands of sources

[0x1] Trading Stocks Made Easy - Sponsored Link

[0x2] It's Not DIS - It is Hackers

[0x3] Australia defends mandatory Internet filter

[0x4] SonicWall launches advanced firewall

[0x5] New research proves that RSA encryption can be foiled

[0x6] Content filtering an obstacle in cyber security talks

[0x7] Cisco Cybercrime showcase

[0x8] NetRegistry proactive response to phishing attack

[0x9] Hackers attempt to dupe NetRegistry customers

[0xA] Hackers attempt to dupe NetRegistry customers

Shellcode - Shell-storm.org

Last shellcodes

[0x1] XP Professional SP2 ita calc.exe - 36 bytes

[0x2] xp pro sp3 (calc) - 57 bytes

[0x3] disabled modsecurity - 64 bytes

[0x4] SP3 english ( calc.exe ) - 37 bytes

[0x5] SP2 english ( calc.exe ) - 37 bytes

[0x6] execve /bin/sh - 21 bytes

[0x7] /bin/sh - 8 bytes

[0x8] Shellcode (cmd.exe) for XP SP2 Turkish - 26 Bytes

[0x9] Shellcode (cmd.exe) for XP SP3 English - 26 Bytes

[0xA] bin/cat /etc/passwd - 43 bytes

CSOONLINE.com - Preparedness

[0x1] Travel Security: What to Pack to Survive a Natural Disaster

[0x2] Massive Storms Don't Halt D.C. IT Ops

[0x3] DDoS Attacks Are Back (and Bigger Than Before)

[0x4] Lack of Telework Preparedness Puts Business Continuity in Danger?

[0x5] How to Perform a Disaster Recovery Business Impact Analysis

[0x6] Most Businesses READY for Flu Pandemic?

[0x7] Business Continuity and Disaster Recovery in a Tornado Zone

[0x8] Swine Flu: Watching the Southern Hemisphere for Signs of H1N1 Havoc

[0x9] WHO Declares Swine flu a Pandemic. Now What?

[0xA] Survey: Business Continuity Plans Factor in Mobile, Social Networking

Anton Chuvakin Blog - "Security Warrior"

This blog covers all sorts of issues of interest to me, including information security, network security, data security - and all other fun things security.

[0x1] RSA 2010 EXCLUSIVE PCI Security Standards Council Interview

[0x2] Links for 2010-03-10 [del.icio.us]

[0x3] Simple Log Review Checklist Released!

[0x4] Security Warrior Blog EXCLUSIVE: 10 Question Interview with Bob Russo and Troy Leach of PCI Council

[0x5] Links for 2010-03-03 [del.icio.us]

[0x6] Monthly Blog Round-Up – February 2010

[0x7] Links for 2010-03-01 [del.icio.us]

[0x8] The Myth of SIEM as “An Analyst-in-the-box” or How NOT to Pick a SIEM-II?

[0x9] Short Observation on Open Source SIEM

[0xA] RSA 2010: Where to Find Anton?

Security Fix

Brian Krebs on computer and Internet security

[0x1] Farewell 2009, and The Washington Post

[0x2] Hackers exploit Adobe Reader flaw via comic strip syndicate

[0x3] Twitter.com hijacked by 'Iranian cyber army'

[0x4] Group IDs hotbeds of Conficker worm outbreaks

[0x5] Hackers target unpatched Adobe Reader, Acrobat flaw

[0x6] Check your Facebook 'privacy' settings now

[0x7] Paper-based data breaches on the rise

[0x8] Critical updates for Adobe Flash, Microsoft Windows

[0x9] Featured Advertiser

[0xA] Security Fix author named 'cybercrime hero'

OutScribe

All the tech that matters...

[0x1] Blog Under Maintenance

[0x2] Best And Most Used Symbian Applications On My Mobile

[0x3] Google Strips Beta Tag from Gmail, Calendar, Docs and Talk, Salvages the World

[0x4] Protect Your Precious and Pricey Mobile From Theft

[0x5] Use your old mail accounts to use your LinkedIn connections optimally

[0x6] GPS Bluetooth Receiver and Data Logger - Visiontac VGPS-900

[0x7] Why Wolfram Alpha is not a Google Killer!

[0x8] Google Internet Bus is coming to Bengaluru!

[0x9] Now share your Google Latitude location with Gtalk buddies and on your blog!

[0xA] When the Moon came close to say Hi!!

ZDNet UK News - Security News

ZDNet UK News - Security News

[0x1] Drudge Report, TechCrunch hit by ad malware

[0x2] NPIA plans data sharing system

[0x3] Card security scheme losing UK support

[0x4] Microsoft rushes to stop Internet Explorer exploit

[0x5] Apple fixes 'highly critical' Safari bugs

[0x6] Zeus botnet shaken by ISP cutoffs

[0x7] Internet Explorer zero-day exploit published

[0x8] Microsoft settles in IM spam suit

[0x9] Manchester hub to spur e-Borders push

[0xA] BMA cites 'serious concern' over patient records

Virtual Shadows has MOVED!

[0x1] Virtual Shadows is MOVING!

[0x2] Hacking programmable road signs

[0x3] David Lacey likes my book!

[0x4] Censoring your blog

[0x5] Book launch on Monday Central London

[0x6] ouch ....

[0x7] Achieving miracles when times are tough

[0x8] The book arrived on Tuesday

[0x9] Your iPhone as a wind instrument!

[0xA] China's Net Nannies have been busy

Free Network / Communications Magazines and Downloads from bestsecuritytips.tradepub.com

Free publications about networking and communication technologies and management.

[0x1] OptoIQ

[0x2] Join F5 & VMware for a breakfast seminar in a city near you and your chance to win a Netbook!*

[0x3] Learn how to choose the best VoIP Phone system for your business and save up to 80% on your bill

[0x4] Customer Relationship Management: Secrets to CRM Success

[0x5] A Newbie's Getting Started Guide to Linux

[0x6] The Easy Guide To Computer Networks

[0x7] Microwaves & RF

[0x8] Build an Agile Infrastructure for Faster, Easier Collaboration

[0x9] Build a Smarter IT Infrastructure for Your School

[0xA] Building a Smarter IT Infrastructure for Local Government

Command Line Kung Fu

This blog will include fun, useful, interesting, security related, non-security related, tips, and tricks associated with the command line. It will include OS X, Linux, and even Windows!

[0x1] Episode #85: Coincidence & Randomness

[0x2] Episode #84: Fixing the Filenames

[0x3] Episode #83: Faster. Higher. Stronger.

[0x4] Episode #82: Hippy Barfday Spew Do You?

[0x5] Episode #81: From the Mailbag

[0x6] Episode #80: Time Bandits

[0x7] Episode #79: A Sort of List

[0x8] Episode #78: Advanced Process Whack-a-Mole

[0x9] Episode #77: USB History

[0xA] Episode #76: Say Hello to My Little Friend Netstat

pSeries Tech Talk Forums - AIX for POWER Systems

Discuss AIX for POWER Systems. Support for AIX commands, backup and restore and AIX shell scripts.

[0x1] AIX v5.3 jfs2 log device had changed in /etc/filesystems

[0x2] AIX v6.1 AIXpert IP filtering

[0x3] AIX v5.3 stop qdaemon send out mesg to users

[0x4] RSS Feed IBM PowerVM Workload Partitions Manager for AIX, Version 2.1

[0x5] AIX v5.3 AIX 5.3 an Progress DB

[0x6] AIX v5.3 IBM Hardware Feature Code

[0x7] RSS Feed Debugging C++ applications using ProbeVue

[0x8] AIX v5.3 Network and hostname configuration....the right way

[0x9] AIX v5.3 Large Filesystem

[0xA] AIX v5.3 AIX 5.3 Virtual CPU

Packet Storm Security Miscellaneous Files

Packet Storm Last 10 Miscellaneous Files

[0x1] tcpdump.pdf

[0x2] physical-terminations.pdf

[0x3] common-ports.pdf

[0x4] Wireshark_Display_Filters.pdf

[0x5] VLANs.pdf

[0x6] Spanning_Tree.pdf

[0x7] QoS.pdf

[0x8] PPP.pdf

[0x9] OSPF.pdf

[0xA] NAT.pdf

Shellcode Feed

Pipes Output

[0x1] PhoenixBit Software Solutions .:[Tutorials]:.

[0x2] NewOrder - computer security and networking portal

[0x3] Peter Van Eeckhoutte's Blog

[0x4] Twitter / alex knorr: RT @vierito5: RT @phr0nak: ...

[0x5] Discover From Your Favorite Topic or Web Page: shellcode.org/

[0x6] Creation of Shellcode on Linux x86/32bits

[0x7] CS38: Home Page

[0x8] Buffer Overflow With Own Shellcode - Video

[0x9] Shellcode

[0xA] The Guides to (mostly) Harmless Hacking: Shortcuts to ...

LinuxSecurity.com: FreeBSD Advisories

The central voice for Linux and Open Source security news.

[0x1] Study: Spammers use e-mail ID to gain legitimacy

[0x2] Review: Mod-Security 2.5 by Magnus Mischel

[0x3] FreeBSD: Kernel memory disclosure in procfs and linprocfs

[0x4] FreeBSD: fetch Overflow error

[0x5] FreeBSD: syscons Boundary checking errors in syscons

[0x6] FreeBSD: cvs number of vulnerabilities

[0x7] FreeBSD: kernel Improper memory access vulnerability

[0x8] FreeBSD: kernel Excessive privilege vulnerability

[0x9] FreeBSD: core:sys Buffer cache invalidation vulnerability

[0xA] FreeBSD: cvs Heap overflow vulnerability

Science&Tech | Mail Online

[0x1] Found... the honey bees with built-in central heating

[0x2] Do you write 'Mr and Mrs'? Scientists claim it is a sexist throwback to the 16th century

[0x3] Replica of big skull from 28,000 years ago suggests human brains have started to shrink

[0x4] ROBERT WINSTON: the dark side of the inventions that changed the world

[0x5] The virtual battles where soldiers can't die: MoD trains Army to fight using sophisticated video games

[0x6] Skeletons in the closet: The tantalising secrets inside the vaults at the Natural History Museum

[0x7] Sony takes on the Wii with the PlayStation Move

[0x8] Tesco's 'green' bags are WORSE for the environment

[0x9] The mind-reading machine: 'Psychic' computer invented that can tell what you're thinking

[0xA] 95% of roads in the UK will now appear on Google's Street View

Google Online Security Blog

The latest news and insights from Google on security and safety on the Internet.

[0x1] Federal Support for Federated Login

[0x2] More Information about Malware Details

[0x3] Do machines dream of electric malware?

[0x4] Best Practices for Verifying and Cleaning up a Compromised Site

[0x5] Protecting Users and Ads from Malware

[0x6] Show Me the Malware!

[0x7] The Malware Warning Review Process

[0x8] Malware Statistics Update

[0x9] Ask the Google Anti-Malware Team

[0xA] Improving web browser security

LinuxSecurity.com: Red_Hat Advisories

The central voice for Linux and Open Source security news.

[0x1] Study: Spammers use e-mail ID to gain legitimacy

[0x2] Review: Mod-Security 2.5 by Magnus Mischel

[0x3] Red Hat: 2010:0130-01: java-1.5.0-ibm: Moderate Advisory

[0x4] Red Hat: 2010:0129-01: cups: Moderate Advisory

[0x5] Red Hat: 2010:0125-01: systemtap: Moderate Advisory

[0x6] Red Hat: 2010:0124-01: systemtap: Important Advisory

[0x7] Red Hat: 2010:0126-01: kvm: Important Advisory

[0x8] Red Hat: sudo

[0x9] RedHat: pidgin

[0xA] RedHat: acroread security and bug fix update

Latest MITRE News

The MITRE Corporation is a not–for–profit organization chartered to work in the public interest. As a national resource, we apply our expertise in systems engineering, information technology, operational concepts, and enterprise modernization to address our sponsors' critical needs.

[0x1] MITRE Chairman Schlesinger Receives DoD's Fubini Award

[0x2] Top 25 Most Dangerous Programming Errors List Released

[0x3] Two MITRE Employees Receive Black Engineer of the Year Awards

[0x4] MITRE's William Albright Honored for Diversity Leadership

[0x5] Fast Company Names MITRE One of the "World's 50 Most Innovative Companies"

[0x6] MITRE's Mark Maybury Named IEEE Fellow

[0x7] MITRE Named One of FORTUNE's "100 Best Companies to Work For" Nine Years in a Row

[0x8] MITRE President and CEO Alfred Grasso Appointed to Defense Science Board

[0x9] MITRE Makes Nielsen Norman Group's 10 Best Intranets List

[0xA] MITRE Opens Fort Meade Site

O'Reilly Conferences: OSCON

Announcements, articles, blogs, photos, and podcasts about O'Reilly conferences.: OSCON

[0x1] OSCON Puts Open Source to Work: O'Reilly Open Source Convention Opens Call for Participation

[0x2] OSCON Early Registration Extended

[0x3] OSCON Early Registration Ends June 2

[0x4] O'Reilly News Release: Open Source Convention Reveals Program and Opens Registration: OSCON 2009 Open for Business

[0x5] News Release: O'Reilly OSCON Opens Call for Participation

[0x6] arstechnica.com: Why Stallman is wrong when he calls cloud computing stupid

[0x7] News Release: O'Reilly's Tenth Annual OSCON Explores Open Source's Dynamic Future

[0x8] Ars Technica: Beer and Coding in Portland: Ars at OSCON

[0x9] InfoWorld: Mobile Computing Now an Open Source Driver

[0xA] internetnews.com: OSCON: O'Reilly Bullish on Open Source

Government Technology Policy / Management News

Government Technology: News: Policy/Management

[0x1] Hillsborough County, Fla., Seeks Budget Cutting Ideas via Social Media

[0x2] California Issues Telework Policy to Curb Cyber-Security Risks

[0x3] White House Declassifies Description of National Cyber-Security Program

[0x4] What's the Capital of Kansas? Google

[0x5] Vermont Adopts Open Source Software Policy

[0x6] Pentagon Embraces Web 2.0 in Social Media Policy

[0x7] New York City IT Review Spurs Data Center Consolidation Plan

[0x8] 2010 Top 25 Doers, Dreamers and Drivers

[0x9] California CIO Issues Use Policy for Facebook, YouTube, Other Social Media

[0xA] Internet Explorer 6 More Popular Than Newer Versions Despite Outdated Security

CSO Blogs - Leadership

[0x1] Cauldron Gets Rave Reviews from Raytheon

[0x2] We Need Visibility Like a Police Log

[0x3] Hacker, Cracker, Salafi, Spy - Be There!

[0x4] To Be Shared at the RSA Conference - Poll Questions

[0x5] Melissa Hathaway to advise Cisco’s security team

[0x6] Joseph Stack, Small Aircraft and al-Qa'eda

[0x7] Connecticut AG files HITECH Act Law Suit…holy IT health records enablement!!

[0x8] Problem 5: Are You An Insider Threat?

[0x9] Do Electric Car Makers Hate Blind Pedestrians?

[0xA] Hold Developers Legally Accountable for Software Security Flaws?

physicsworld.com: all content

Latest content from physicsworld.com

[0x1] Enter the 'thermopower wave'

[0x2] Laser Lines Ltd

[0x3] Borexino bags geoneutrinos

[0x4] Electrical signals transmitted via spin waves

[0x5] Concerns raised over Institute of Physics climate submission

[0x6] Nonlinear Dynamics on Networks

[0x7] Agilent Technologies SA

[0x8] Galaxy study backs general relativity

[0x9] LaserBoxx - Laser diode module

[0xA] EKSMA OPTICS (c/o Optolita uab)

Free Information Technology Magazines and Downloads from bestsecuritytips.tradepub.com

Free publications about information technology and digital communication.

[0x1] Enabling Enterprise-Class Business Continuity for Less

[0x2] Gartner Report: Storage Efficiency Puts SSD on the Map

[0x3] More Data Doesn't Always Mean More Cost

[0x4] Three Must Haves for the Virtual Data Center

[0x5] Five Ways to Lower SAN Administration to Three Hours a Week

[0x6] Transforming Business Continuity with Virtualized Servers and Storage

[0x7] Military & Aerospace Electronics

[0x8] La Guia Esencial para AIX y IBM i(i5/OS) de Recuperacion de Desastres

[0x9] True Thin Provisioning

[0xA] Fluid Data Storage Drives Flexibility in the Data Center

Declan McCullagh's Politech

Politech is the oldest Internet resource devoted to politics and technology. Launched in 1994, the Politech mailing list and then the web site has chronicled the growing intersection of law, culture, technology, politics, and law. Edited by Declan McCullagh.

[0x1] Politicians push for mandatory data retention laws, bipartisanly

[0x2] Who'd make the most technology-friendly president? Discuss.

[0x3] Judge rules defendant can't be forced to divulge PGP passphrase

[0x4] ITU botnet paper published in draft form, comments requested

[0x5] David Burt and his Filtering Facts Web site are back

[0x6] FTC Internet advertising summit in Washington this week

[0x7] Hamline University student suspended after pro-gun rights email

[0x8] MIT student picking up friend at airport nearly shot, charged with "infernal machine" crime

[0x9] Paul Levy: Politicians, infomercial kings try to stifle anonymous Internet speech

[0xA] Colorado sheriff creates roadblock so private firm can demand DNA blood samples

Latest Virus Descriptions

[0x1] Backdoor.Win32.Clampi.a

[0x2] Trojan-Dropper.Win32.Agent.albv

[0x3] Backdoor.Win32.Agent.abgg

[0x4] Trojan-Dropper.Win32.Kido.a

[0x5] Trojan-Downloader.Win32.Kido.a

[0x6] Email-Worm.Win32.Merond.a

[0x7] Trojan.Win32.Agent.azsy

[0x8] Trojan.Win32.Agent2.dtb

[0x9] Trojan-Downloader.Win32.Small.ydh

[0xA] Trojan-Downloader.Win32.Agent.ahoe

Internet Security News - SecurityProNews

Breaking news and top stories from the world of Internet security.

[0x1] Google Goes After Impersonator Scammers

[0x2] Senate Uncovers Online Credit Card Tricks

[0x3] McAfee: Cyberwarfare A Big Threat

[0x4] ICSA Labs Finds Flaws In New Security Products

[0x5] Nigeria Announces Early Results Of Anti-Scammer Initiative

[0x6] MessageLabs Names Most- (And Least-) Spammed States

[0x7] Enormous Malware Archive Creates Stir

[0x8] Avsim Hacker (Maybe) Brought Before Cops

[0x9] Email Password Hackers Present Real Threat

[0xA] Laptops, CDs Alarm Governors, Credit Unions

Podcasts

Listen to the latest Podcasts from Veracode

[0x1] Detecting "Certified Pre-owned" Software and Devices

[0x2] Application Outsourcing Podcast

[0x3] InfoSec Europe Conference

[0x4] PCI Primer - Introduction to PCI Compliance

[0x5] Veracode Announces Technology and Service Breakthroughs

[0x6] Veracode Talks Security with InfoWorld

[0x7] Automated Vulnerability Assessment

[0x8] How Vulnerabilities Get Into All Software

[0x9] Software Security Testing: Strengthening Your Defense Strategy

[0xA] Software Security Testing: Demanding Software Security

[0x1] Windows7 Virtual AP – Why is it a big deal now?

[0x2] Windows 7: A New Wireless Risk for the Enterprise – Webinar

[0x3] Hilarious video with a somber message

[0x4] SIMFI: Convert your cell phone into a WiFi honeypot!

[0x5] WiFi Hots(Honey)pots Go Mobile

[0x6] Wi-Fi Networks Open to Attacks

[0x7] WPA-PSK Passwords Now on Sale…Starting $17!

[0x8] SSL Renegotiation Vulnerability: Journey from Theory to Practice to Prevalence

[0x9] What, wireless security violation over flower vase?

[0xA] How “soft APs” can create “soft spots” in your network security

CSOONLINE.com - Employee Protection

[0x1] Secure Parking Lot Design: Dos and Don'ts

[0x2] Parking Lots and Garages: Security Factors

[0x3] Travel Security: What to Pack to Survive a Natural Disaster

[0x4] Disaster in Haiti: Advice for Employees and Operations on the Ground

[0x5] Security and Building Design: What Changed in This Decade

[0x6] Testing Shows Cocaine, Meth Use Down Among U.S. Workforce

[0x7] Excerpt: Conducting a Protective Security Advance

[0x8] Managing Security Overseas: Contact and Coordination with Local, Regional, and International Authorities

[0x9] How Security Should Handle Pickets and Strikes

[0xA] How 9-11 Shaped Hoover Dam Security Operations

The Web Application Security Consortium / FrontPage

The Web Application Security Consortium (WASC) is an international group of experts, industry practitioners, and organizational representatives who produce open source and widely agreed upon best-practice security standards for the World Wide Web.

[0x1] Robert Auger edited FrontPage

[0x2] Robert Auger edited FrontPage

[0x3] Robert Auger edited FrontPage

[0x4] Robert Auger edited FrontPage

[0x5] Robert Auger edited FrontPage

[0x6] Robert Auger edited FrontPage

[0x7] Robert Auger edited FrontPage

[0x8] Robert Auger edited FrontPage

[0x9] Robert Auger edited FrontPage

[0xA] Robert Auger edited FrontPage

Twitter / exploitdb

Twitter updates from Exploit Database / exploitdb.

[0x1] exploitdb: Joomla component com_gcalendar Suite v2.1.5 Local File Include: http://bit.ly/cdqlIJ

[0x2] exploitdb: PHP Classifieds v7.5 Blind SQL Injection Vulnerability: http://bit.ly/cckfFn

[0x3] exploitdb: Ninja RSS Syndicator v1.0.8 Local File Include: http://bit.ly/c29ZHk

[0x4] exploitdb: Phenix v3.5b SQL Injection Vulnerability: http://bit.ly/cOTxNL

[0x5] exploitdb: Open & Compact FTPd 1.2 Pre-Authentication Buffer Overflow (meta): http://bit.ly/bcHrWD

[0x6] exploitdb: Joomla component com_rpx Ulti RPX v2.1.0 Local File Include: http://bit.ly/9cKuWi

[0x7] exploitdb: PhpMyLogon v2 SQL Injection Vulnerability: http://bit.ly/aKPmsr

[0x8] exploitdb: deV!L`z Clanportal 1.5.2 Remote File Include Vulnerability: http://bit.ly/9UrZ7Z

[0x9] exploitdb: Front Door v0.4b SQL Injection Vulnerability: http://bit.ly/aDjo1W

[0xA] exploitdb: phppool media Domain Verkaufs und Auktions Portal index.php SQL Injection: http://bit.ly/9F9MIa

The new Security and Penetration Testing Community - ArcaneSecurity.net - The new Security and Penetration Testing Portal

A new Information and Penetration Testing Protal for all security and network professionals. The site include a number of whitehat hacking tools and documents like nmap,dsniff,etterkap,yersinia,cisco security.

[0x1] Honeypot

[0x2] The Conflicker Worm

[0x3] Thoughts on Security of the Corporate documents

[0x4] Are Security Audits necessary ?

[0x5] RFID, its implications and how to defeat

[0x6] Assesing Risks

[0x7] FBI Raids: Pertinent or Paranoid?

[0x8] Protecting Children Online

[0x9] Sarbanes Oxley and IT

[0xA] Phishing For Your Identity

extraexploit

everything or nothing

[0x1] CVE-2010-0806 - Internet Explorer 6/7 0 day

[0x2] Firefox 3.6.x - 0 day for document.write - yet another

[0x3] The Command Structure of the Aurora Botnet - Damballa paper

[0x4] Firefox 3.6 "0day" - trying to find more info (and more "0day")

[0x5] using Robtex for fun and… (profit?)

[0x6] CVE-2010-0249 in the wild – part 0.3

[0x7] CVE-2010-0249 in the wild – part 0.2

[0x8] extraexploit blog it’s been copied

[0x9] CVE-2010-0249 in the wild – part 0.1

[0xA] CVE-2010-0249 in the wild - xx222.8866.org and others – part 0

Welcome to the Frontpage

ThreatChaos. News, views and analysis. A security blog providing original research from the IT-Harvest team.

[0x1] A solution for Google in China

[0x2] Twitter Red Carpet Era

[0x3] Best of Show RSA Conference 2010

[0x4] Weapon of cyber war demonstrated

[0x5] Be afraid. Fatal System Error is a scary book.

[0x6] Five cyber defense vendors to watch in 2010

[0x7] Myth busting Monday

[0x8] Some important views on the China-Google affair

[0x9] Putting Chinese cyber espionage in perspective

[0xA] Google engages in cyber vigilantism

Edible Apple

Apple News, Rumors, and Analysis

[0x1] Behind Google and Apple’s growing and heated rivalry

[0x2] PA Semi founder Daniel Dobberphui leaves Apple

[0x3] Doritos parodies the iPad with Spice 2.0 [Video]

[0x4] Tim Cook receives $5 million bonus from Apple

[0x5] The Secret Origins of Windows 1.0

[0x6] Report: iPads pre-orders hit 50,000 in 2 hours

[0x7] Wireless keyboard for the iPad available for $69

[0x8] Apple does away with iPad “Mute” button, puts “Screen Rotation Lock” in its place

[0x9] Apple v. Nokia showdown won’t begin until 2012

[0xA] Thursday Night - Friday Morning Link Extravaganza

LinuxSecurity.com: Debian Advisories

The central voice for Linux and Open Source security news.

[0x1] Study: Spammers use e-mail ID to gain legitimacy

[0x2] Review: Mod-Security 2.5 by Magnus Mischel

[0x3] Debian: 2016-1: drupal6: Multiple vulnerabilities

[0x4] Debian: 2014-1: moin: Multiple vulnerabilities

[0x5] Debian: 2013-1: egroupware: Multiple vulnerabilities

[0x6] Debian: 2012-1: linux-2.6: privilege escalation/denial

[0x7] Debian: 2011-1: dpkg: path traversal

[0x8] Debian: : kvm: privilege escalation/denial

[0x9] Debian: 2009-1: tdiary: insufficient input sanitisi

[0xA] Debian: 2008-1: typo3-src Multiple Vulnerabilities

Paranoia, Insecurity, and Overall Anxiety

I decided to create this blog to share information with those readers who are interested in some of the topics addressed. These topics will primarily be information security focused, but don't be surprised if I throw in a conspiracy theory or two from time to time.

[0x1] PA School Activates Spycam on Laptop

[0x2] Spyware for Your Blackberry

[0x3] Don't Forget Iron Man

[0x4] Pursuit Robots

[0x5] I Have Returned

[0x6] Ubiquitous Computing - I Don't Like IT!

[0x7] A Little Satire

[0x8] Bundled Facial Recognition Software on New Laptops

[0x9] I Have Been Slipping!

[0xA] Unleash the Cracken aka DARPA

Gizmo's Freeware: Top selections

The best freeware finds from Gizmo's Freeware (www.techsupportalert.com)

[0x1] Updated: Best Free Portable Applications

[0x2] New: Best Free Music Creation Software

[0x3] Updated: The Best Films Dealing with Computer and Technology

[0x4] Free Screen Recorder Captures Screen, Sound and Webcam

[0x5] 100 Incredible Video Lectures from the World’s Top Scientists.

[0x6] Download Gorgeous Mouse Cursors for Free

[0x7] Where to Find Free Legal Information on the Web

[0x8] The 46 Best Ever Freeware Programs

[0x9] New at Gizmos: The Best Free Online Applications and Services.

[0xA] Free Utility Does Your PC Maintenance with the Click of a Button

Help Net Security - News

Help Net Security is a daily updated security related site. We offer information on the latest happenings in the InfoSec world, advisories, viruses, papers, and more. HNS also has a large download section of security tools for Windows, Linux, Mac OS X and Pocket PC.

[0x1] Rogue software details: Smart Security

[0x2] Does Web 2.0 need Web security 2.0?

[0x3] Collection of security checks for Linux

[0x4] Introducing the Cyber Defence conference

[0x5] Week in review: Compromised hardware, AV failures and published IE 0-day exploit

[0x6] The threat landscape is changing, AV fails to adjust

[0x7] Apple Safari 4.0.5 patches critical vulnerabilities

[0x8] Playstation emulator installs malware

[0x9] PeerSec MatrixSSL: Embedded SSL and TLS implementation

[0xA] Exploit for IE 0-day flaw published, patch still unavailable

Robert E. Lee

Thoughts on security testing methodologies, regulatory compliance, security tools, security metrics, and other current events.

[0x1] Sockstress TCP DoS - CERT-FI Advisory

[0x2] Sockstress TCP DoS - CERT-FI Statement Update

[0x3] Jack C. Louis - The loss of a dear friend...

[0x4] Good to be back...

[0x5] Unicornscan on Debian - Some updated notes...

[0x6] TCP DoS tool (Complemento)...

[0x7] Fnta [Error fantaip.c:428] short packet!!!!

[0x8] Athens...

[0x9] On the road again...

[0xA] T2 Sockstress Talk Recap...

Latest Blog Entries From Websense Security Labs

These are the latest blogs from the Websense security labs

[0x1] This Month in the Threat Webscape

[0x2] Quarter Million Malicious Facebook Posts

[0x3] RSA 2010 Recap

[0x4] WordPress Injection Attack

[0x5] An Evolution of Profit Driven Malware

[0x6] Websense Security Labs presents today at RSA 2010

[0x7] Malicious Facebook App Propagates via Users

[0x8] Pharma comments for my blog

[0x9] Web proxy sites using obfuscation

[0xA] What do a philologist and a lollipop have in common?

AVG News

News & Press Releases

[0x1] AVG Technologies Scoops Up Security Industry Awards

[0x2] AVG Technologies’ Summer of Success

[0x3] Social Networking Poll Shows Users More Vulnerable Than Ever

[0x4] AVG Broadens Channel Reseller Program with Ingram Micro

[0x5] AVG LinkScanner Is Making the Internet Clean and Safe, A Half Million Computers At A Time

[0x6] AVG Technologies Receives Yet Another Virus Bulletin 100 Certification

[0x7] AVG Launches Free Protection Against Online Threats

[0x8] AVG Introduces Streamlined, Highly-Scalable Anti-Malware for Linux

[0x9] AVG Technologies opens Internationals Research Centre

[0xA] AVG Technologies is Double Winner of 2009 Global Excellence Awards

rAWjAW's Blog

Coding, Exploiting, Reverse Engineering

[0x1] Updates

[0x2] Second XSS and Milw0rm Submission

[0x3] Passed My C|EH

[0x4] Security Rant

[0x5] Contacted Back!

[0x6] First XSS Vulnerability Discovery!

[0x7] Jasager and Airbase-ng Defenses

[0x8] Passed the GPEN!

[0x9] MS08-067 in Metasploit

[0xA] GIAC Penetration Tester (GPEN)

Check Point SmartDefense Service Advisories

The SmartDefense Service provides real-time updates and new attack protection capabilities for Application Intelligence, Web Intelligence, and Network defenses for various products.

[0x1] Update Protection against Microsoft Internet Explorer iepeers.dll Remote Code Execution Vulnerability

[0x2] Update Protection against Microsoft Movie Maker Project File Handling Buffer Overflow Vulnerability (MS10-016)

[0x3] Update Protection against Microsoft Excel DbOrParamQry Record Parsing Code Execution Vulnerability (MS10-017)

[0x4] Update Protection against Microsoft Excel XLSX File Parsing Code Execution Vulnerability (MS10-017)

[0x5] Update Protection against Microsoft Excel FNGROUPNAME Record Uninitialized Memory Vulnerability (MS10-017)

[0x6] Update Protection against Microsoft Excel MDXTUPLE and MDXSET Records Heap Overflow Vulnerabilities (MS10-017)

[0x7] Update Protection against Microsoft Excel Sheet Object Type Confusion Vulnerability (MS10-017)

[0x8] Update Protection against Microsoft Excel EntExU2 Record Memory Corruption Vulnerability (MS10-017)

[0x9] Update Protection against Microsoft VBScript MsgBox Call with Malicious HLP File Vulnerability

[0xA] Workaround for Microsoft Windows Kernel Exception Handler Code Execution Vulnerability (MS10-015)

TechRadar: Internet news

TechRadar UK Internet feeds

[0x1] Google looks likely to pull out of China

[0x2] Ford planning in-car app store for games and more

[0x3] XXX porn domain still being considered

[0x4] Human arm turned into broadband channel

[0x5] 25th birthday for .com domain

[0x6] Pirate Bay founder compares P2P to Coca Cola

[0x7] SXSWi 2010: 15 memorable quotes from the Pirate Bay's Peter Sunde

[0x8] SXSWi 2010: Google's Chris Messina talks Buzz and the social web

[0x9] Opera 'very satisfied' with browser ballot

[0xA] Google responds to user feedback and quietens down Buzz inbox noise

SearchSoftwareQuality: Software quality news and advice

News, analysis and technical advice about securing applications and Web services.

[0x1] Is unit testing an important aspect of software development?

[0x2] Excelling in Agile software development, testing and quality tutorial

[0x3] Software test expert: Why Agile teams' unit tests often fail

[0x4] Software project manager perspective: The components of successful application development

[0x5] Software requirements gathering techniques

[0x6] Making unit testing a priority

[0x7] Top-notch tools for your software project manager toolbox

[0x8] Agilists share product owner stories on Scrum and Agile

[0x9] New fuel to the Agile ALM solution fire from Version One

[0xA] The Agile way, who can do it and who can't?

/dev/one

Security related tools, Network protocols, Operating Systems, SIMS, NIDS... target: Security

[0x1] Improved version of pcap2rawc

[0x2] Rule2Alert

[0x3] I must feel lucky...

[0x4] Ante la inclusión en el Anteproyecto de Ley de Economía Sostenible

[0x5] Profiling with shark on Mac OS X - Snow Leopard

[0x6] pcap2rawc.py

[0x7] Snort ( 2.8.* < 2.8.5stable) Unified1 output bug

[0x8] another birthday present

[0x9] NetMirror

[0xA] pcap to scapy

The TSA Blog

Terrorists Evolve. Threats Evolve. Security Must Stay Ahead. You Play A Part.

[0x1] Advanced Imaging Technology: "Radiation Risk Tiny"

[0x2] Live Aviation Security Chat with Secretary Napolitano on Facebook 3/9/10

[0x3] Backscatter Advanced Imaging Technology on Its Way to First Eleven Airports

[0x4] What Ever Happened To The Shoe Scanner Idea?

[0x5] What Happens If My Hands Alarm During an Explosives Trace Detection Test (And other questions answered)

[0x6] Four Year Old Boy In Philly Told To Remove Leg Braces

[0x7] Explosive Trace Detection Usage Expanded: Give Us A Hand

[0x8] Bollywood Confidential

[0x9] TSA Haiti Evacuation Effort: A Federal Security Director's Perspective

[0xA] Orlando Officer Arrested

CSO Blogs - Identity Management

[0x1] Cauldron Gets Rave Reviews from Raytheon

[0x2] We Need Visibility Like a Police Log

[0x3] Hacker, Cracker, Salafi, Spy - Be There!

[0x4] Connecticut AG files HITECH Act Law Suit…holy IT health records enablement!!

[0x5] Hold Developers Legally Accountable for Software Security Flaws?

[0x6] Time to re-think encryption

[0x7] CyberTerror - the Arms Race We're Losing

[0x8] Data Genomes and Persistent Security - Protecting Information at its Inception

[0x9] High Tech Firms Who Outsource Software Development to China - The Dirty Little Secret

[0xA] Reasons Why Granny Clampett Kept Her Money in Her Mattress

CERIAS Combined Feed

News and Blog posts from CERIAS. This feed does not include our events calendar (http://www.cerias.purdue.edu/feeds/events)

[0x1] Making the CWE Top 25, 2010 Edition

[0x2] Cowed Through DNS

[0x3] Blast from the Past

[0x4] Is it ‘High Noon’ for Google, China?

[0x5] Scammers target givers after Haiti earthquake

[0x6] Drone “Flaw” Known Since 1990s Was a Vulnerability

[0x7] An old canard reappears (sort of)

[0x8] Talking to the Police All the Time

[0x9] CERIAS partners with industry, academic leaders to address nation’s cybersecurity threats

[0xA] “Verified by VISA”: Still Using SSNs Online, Dropped by PEFCU

Ministry of Justice Latest news

[0x1] Tribunal awards: defaulters' names to be put on public debt register

[0x2] Powers of Attorney cost reduction takes effect

[0x3] New probation trusts announced to cut reoffending

[0x4] Law firms to allow non-lawyer partners

[0x5] Appointment of new members to Advisory Panel on Public Sector Information

[0x6] Guide to Criminal Procedure (Amendment No. 2) Rules 2008

[0x7] Her Majesty's Courts Service key performance indicators 2009-10

[0x8] Public have their say on how criminals payback

[0x9] Domestic violence: 18 new special courts announced

[0xA] Justice minister welcomes annual report on deaths in custody

Security Tools News & Tips

Just another WordPress weblog

[0x1] Microsoft Security Essentials

[0x2] NSMXpress

[0x3] Korea to train 3,000 ‘cyber sheriffs’

[0x4] FortiClient standard edition

[0x5] 10 Solid Tips to Safeguard Your Facebook Privacy

[0x6] K9 Web Protection

[0x7] Check Point Power-1 Appliances

[0x8] Wordpress blogs hacked – Upgrade your Wordpress NOW!

[0x9] Cisco ASA 5500 Series Firewall

[0xA] (IN)SECURE Magazine Issue 22 is out

TechRadar: All news feeds

TechRadar UK news feeds

[0x1] Google looks likely to pull out of China

[0x2] Sci Fi HD coming to Virgin Media

[0x3] Nokia-Apple patent trial not expected until 2012

[0x4] Ford planning in-car app store for games and more

[0x5] New details emerge over BlackBerry slider phone

[0x6] XXX porn domain still being considered

[0x7] Human arm turned into broadband channel

[0x8] TomTom adds live traffic updates to iPhone app

[0x9] 25th birthday for .com domain

[0xA] Civilization designer: Why gamers' expectations defy reason

InfoWorld SECURITY Feed

InfoWorld - Information Technology News, Computer Networking & Security

[0x1] IBM sees Conficker hitting 4 percent of PCs

[0x2] Hackers seize on 0-day flaw in Microsoft's PowerPoint

[0x3] IBM continues push for Sun, but will the deal kill Solaris?

[0x4] Bill would give feds role in private sector cybersecurity

[0x5] Conficker may be more widespread than previously thought

[0x6] Forrester now says '09 U.S. IT spend to drop 3.1 percent

[0x7] Conficker activation passes quietly, but threat isn't over

[0x8] Gartner: IT spending drop-off worse than after dot-com bust

[0x9] China denies cyberespionage charges

[0xA] Fake security software scammers jump on Conficker

Wilders Security Forums

This is a Computer Security discussion forum.

[0x1] Online Armor Updated

[0x2] Malwarebytes' Anti-Malware defs update 3/15/2010

[0x3] AVG defs update March 15, 2010

[0x4] rundll32.exe

[0x5] Humorous browser differences.

[0x6] Email notifications

[0x7] NOD32 - ESS Update - 4945 [15 Mar 2010]

[0x8] VIPRE/CounterSpy March 15, 2010

[0x9] AntiVir defs update 15 Mar 2010

[0xA] Delete files by age?

Skypher

The blog for absolutely nothing!

[0x1] Microsoft Windows .ANI file BITMAPINFOHEADER.biClrUsed bounds check missing

[0x2] ASPsh – A remote shell written in ASP.

[0x3] Internet Exploiter 2 – bypassing DEP

[0x4] Wiki back up

[0x5] Google Chrome 4

[0x6] Microsoft Internet Explorer 6.0/7.0 NULL pointer crashes

[0x7] Advances in heap spraying #1: when size matters.

[0x8] Wiki temporarily down

[0x9] w32-exec-calc-shellcode released

[0xA] Download and LoadLibrary shellcode released

Information Security Resources

Part of the Infosec Island ™ Network

[0x1] Quick Tips for Using Secure Shell

[0x2] Consolidate Compliance With Open Source

[0x3] DoS Attack Reveals Widespread Vulnerabilities

[0x4] Study Shows Employees Put Data at Risk

[0x5] Tracking Google’s Script Kiddie Hackers

[0x6] Newbie Introduction to Digital Forensics Part 2

[0x7] Simple Log Review Checklist Released

[0x8] Press F1 for Help? Microsoft Zero Day Threat!

[0x9] A Newbie’s Introduction to Digital Forensics

[0xA] Security Best Practice: Trust But Verify…

HolisticInfoSec.org

The HolisticInfoSec.org blog includes follow-up on previously written articles and research, as well as the occasional rant. While the goal is promoting standards, simplicity, and efficiency in achieving holistic information security, we occasionally rally against industry shortcoming where necessary.

[0x1] #6 of the Top Vulnerability Discoverers of 2009

[0x2] RSA: Visualizing the Zeus attack against government and military

[0x3] Financials and the need for software regression testing

[0x4] Online finance flaw: Ameriprise III - please make it stop

[0x5] Directory traversal as a reconnaissance tool

[0x6] toolsmith: Firefox Addons for the Security-minded

[0x7] Online finance flaw: Ameriprise FAIL...again

[0x8] DEF CON 17 CSRF Videos Remastered

[0x9] Drilling into web application flaws & HIPAA: the root of the issue

[0xA] XSSing Bob: At least GoDaddy got this one right

SearchSecurity: Security Wire Daily News

The latest information security news on IT threats, vulnerabilities and market trends from the award-winning SearchSecurity.com.

[0x1] MD5 hash vulnerability is expert's top Web security flaw

[0x2] Zeus botnet temporarily disrupted, but back in full force

[0x3] Experts see DNSSEC deployments gaining traction

[0x4] Noted cryptographer on SSL, encryption and cloud computing

[0x5] Social networking risks, benefits for enterprises weighed by RSA panel

[0x6] Microsoft repairs Excel flaws, warns of new IE vulnerability

[0x7] Botnets, malware and capturing cybercriminals

[0x8] VeriSign on DNSSEC support

[0x9] FBI asks for more private-sector help reporting cybercrime cases

[0xA] At RSA Conference, experts dismiss end-to-end encryption claims

Light Blue Touchpaper

Security Research, Computer Laboratory, University of Cambridge

[0x1] What’s worrying the spooks?

[0x2] Cambridge Science Festival: Science research now!

[0x3] A wrecking amendment ?

[0x4] More on the SCR

[0x5] Evaluating statistical attacks on personal knowledge questions

[0x6] Reliability of Chip & PIN evidence in banking disputes

[0x7] Opting out of health data collection

[0x8] Measuring Typosquatting Perpetrators and Funders

[0x9] Call for papers: WEIS 2010 — Submissions due next week

[0xA] What’s the Buzz about? Studying user reactions

Secu.be

Secu.be

[0x1] Latest OSVDB Vulnerabilities: Mole Group Multiple Products admin/admin.php user_id Parameter Arbitrary Password Manipulation

[0x2] Latest OSVDB Vulnerabilities: Adult Portal Script profile.php user_id Parameter SQL Injection

[0x3] Moreover Technologies - Computer security news: Social networking sites are phishing traps

[0x4] Moreover Technologies - Computer security news: Australia defends mandatory Internet filter

[0x5] Moreover Technologies - Computer security news: Australia defends mandatory Internet filter

[0x6] Moreover Technologies - Computer security news: Cybercrime surge pushes 2009 losses to $559 million

[0x7] Moreover Technologies - Computer security news: PATH FINDER TECHNOLOGY OVERCOMES IPSEC COMMUNICATION PROBLEMS AT FIREWALLS

[0x8] Moreover Technologies - Computer security news: Bedeviled by escrow frustration

[0x9] Moreover Technologies - Computer security news: Hacker highway

[0xA] Moreover Technologies - Computer security news: Blowfish launches new e-commerce platform developed by RLM

Government Technology Security News

Government Technology: News: Security

[0x1] Briefs: Edmonton, Alberta, Embraces Open Government; White House Mulls Contest Platform

[0x2] Briefs: Philly Mayor Wants IT Investment, Iowa Gets Hacked and Other News

[0x3] Napolitano Announces Contest for Ideas to Promote Cyber-Security

[0x4] California Issues Telework Policy to Curb Cyber-Security Risks

[0x5] White House Declassifies Description of National Cyber-Security Program

[0x6] Pentagon Embraces Web 2.0 in Social Media Policy

[0x7] Internet Explorer 6 More Popular Than Newer Versions Despite Outdated Security

[0x8] Report: 'Widespread' Data Exposure on P2P File-Sharing Networks

[0x9] Government Agencies Among Those Hacked in Massive January Botnet Attack

[0xA] School District Spied on Students via Laptop Webcams, Lawsuit Claims

Crypto-Gram Security Podcast

Security: Bruce Schneier's monthly Crypto-Gram Newsletter (read by Dan Henage)

[0x1] Crypto-Gram 15 Jan 2010

[0x2] Crypto-Gram 15 Dec 2009

[0x3] Crypto-Gram 15 Nov 2009

[0x4] Crypto-Gram 15 Oct 2009

[0x5] Crypto-Gram 15 Sep 2009

[0x6] Crypto-Gram 15 Aug 2009

[0x7] Crypto-Gram 15 Jul 2009

[0x8] Crypto-Gram 15 Jun 2009

[0x9] Crypto-Gram 15 May 2009

[0xA] Crypto-Gram 15 Apr 2009

dropsafe

network security, free software, cycles, food, drink, life...

[0x1] The whys and wheres of IT management

[0x2] Twitter Updates for 2010-03-15

[0x3] Twitter Updates for 2010-03-15

[0x4] Twitter Updates for 2010-03-14

[0x5] Twitter Updates for 2010-03-13

[0x6] Goodbye, Economist…

[0x7] Twitter Updates for 2010-03-12

[0x8] Twitter Updates for 2010-03-11

[0x9] Noah’s Ark Gathering Point

[0xA] Advance Notice: crypticide.com extended outage ~ March 20 onward

Twitter / TrendMicro

Twitter updates from TrendMicro / TrendMicro.

[0x1] TrendMicro: Pacquiao-Clottey Live Streams Lead to FAKEAV http://blog.trendmicro.com/?p=22858

[0x2] TrendMicro: Corey Haim's Death Leads to FakeAV http://blog.trendmicro.com/?p=22788

[0x3] TrendMicro: Okay, we're pretty excited for the Trend channel champions http://bit.ly/cSbeq6

[0x4] TrendMicro: Malware Gets Smart with Vodafone Smartphone http://blog.trendmicro.com/?p=22661

[0x5] TrendMicro: More Adobe Exploits in the Wild http://blog.trendmicro.com/?p=22752

[0x6] TrendMicro: Trend wins CRN's Channel Champ award for Network Security Software http://bit.ly/bFDkgL

[0x7] TrendMicro: New IE Zero-Day Exploit (CVE-2010-0806) http://blog.trendmicro.com/?p=22741

[0x8] TrendMicro: 0-day exploit for new IE flaw already circulating in wild -- details coming soon

[0x9] TrendMicro: Multiple Vendors Affected By New Vulnerabilities http://blog.trendmicro.com/?p=22633

[0xA] TrendMicro: iPad Giveaway Gives Users’ Identities Away http://blog.trendmicro.com/?p=22598

pSeries Tech Talk Forums

Free resource for IBM pSeries support, AIX support, Power Linux support and the latest information on IBM pSeries server virtualization.

[0x1] marto06 Intro

[0x2] lawrephord Intro

[0x3] talleiyar Intro

[0x4] mm1 Intro

[0x5] neilbbb Intro

[0x6] AIX v5.3 jfs2 log device had changed in /etc/filesystems

[0x7] raymund414 Intro

[0x8] victorval Intro

[0x9] cayer2c Intro

[0xA] PKJ Intro

OVAL Repository Latest Updates

This feed provides information about the latest updates to the OVAL Repository, including new OVAL definitions; definitions that have changed status (e.g., from Draft to Interim or Interim to Accepted); and definitions that have been modified is posted here. Each update to the OVAL Repository will also update this feed. The OVAL Repository is updated as edits and additions are completed. It is possible for this feed to be updated several times per day, but updates rarely occure more often than once per day.

[0x1] Definition oval:org.mitre.oval:def:7479 has been added to the OVAL Repository.

[0x2] Definition oval:org.mitre.oval:def:8064 has been added to the OVAL Repository.

[0x3] Definition oval:org.mitre.oval:def:6438 has been added to the OVAL Repository.

[0x4] Definition oval:org.mitre.oval:def:5954 has been added to the OVAL Repository.

[0x5] Definition oval:org.mitre.oval:def:6165 has been added to the OVAL Repository.

[0x6] Definition oval:org.mitre.oval:def:5950 has been added to the OVAL Repository.

[0x7] Definition oval:org.mitre.oval:def:6216 has been added to the OVAL Repository.

[0x8] Definition oval:org.mitre.oval:def:6150 has been added to the OVAL Repository.

[0x9] Definition oval:org.mitre.oval:def:5653 has been added to the OVAL Repository.

[0xA] Definition oval:org.mitre.oval:def:6124 has been added to the OVAL Repository.

LinuxSecurity.com: OpenBSD Advisories

The central voice for Linux and Open Source security news.

[0x1] Study: Spammers use e-mail ID to gain legitimacy

[0x2] Review: Mod-Security 2.5 by Magnus Mischel

[0x3] OpenBSD: kernel heap overflow in IPsec

[0x4] OpenBSD: login_radius security flaw

[0x5] OpenBSD: Xpm security fix

[0x6] OpenBSD: zlib reliabilty fix

[0x7] OpenBSD: cvs Multiple vulnerabilities

[0x8] OpenBSD: cvs Heap overflow vulnerability

[0x9] OpenBSD: procfs Incorrect bounds checking vulnerability

[0xA] OpenBSD: cvs Pathname validation vulnerabilities

Managing Intellectual Property & IT Security

New methods of communications are changing the way that we do business, from hiring people, to designing scalable systems, to breaking down silos across organizations, how we manage information and systems in the Web 2.0 world is going to determine how well we compete as people and as companies in the future.

[0x1] 10 things to think about with Cloud Computing and Forensics

[0x2] How to set up your single cloud computer for multiple web sites

[0x3] Facebook entry leads to military raid being canceled

[0x4] Lower Merion County School Spy case gets odder

[0x5] Seven Deadly Sins in Cloud Computing Security

[0x6] Cloud Computing Globalization and the American IT Worker

[0x7] Yes it is possible to resource starve a Cloud Computer

[0x8] School used Remotely Activated Web Cams used to spy on high school students at home

[0x9] Nothing says Information Security Fail quite like 75000 compromised computers

[0xA] Telecoms unite against Apple

Cisco Learning Home : All Content - Security

All Content in Security

[0x1] ASA vs PIX

[0x2] Cisco WCCP Security

[0x3] ASA - Inspect ICMP with PMTUD

[0x4] ASA Guidelines - VLANS

[0x5] IPv6 security concerns

[0x6] VPN Client

[0x7] Some Questions on ISCW

[0x8] Security Specialist Certifications

[0x9] Cisco ASA 5550 Best Guide/Book

[0xA] is it possible to create VPN connection using one subnet?

Rational Survivability

PLEASE NOTE: I HAVE PERMANENTLY MOVED MY BLOG TO http://www.rationalsurvivability.com/blog <-- All these posts/comments have been moved there and all new posts since May 2009 appear there.

[0x1] IMPORTANT REMINDER: My Blog and RSS Feed Have Moved To http://www.rationalsurvivability.com/blog

[0x2] IMPORTANT REMINDER: My Blog and RSS Feed Have Moved

[0x3] IMPORTANT: Moving My Blog & RSS Feed

[0x4] BeanSec! Wednesday, March 18, 2009 - 6PM to ?

[0x5] How To Be PCI Compliant in the Cloud...

[0x6] On the Overcast Podcast with Geva Perry and James Urquhart

[0x7] More On Clouds & Botnets: MeatClouds, CloudFlux, LeapFrog, EDoS and More!

[0x8] Source Boston - Video Interviews of Security Rockstars...

[0x9] Oh Noes: We Can't Monitor/Protect Against Intra-VM Traffic!

[0xA] Sun vs. Cisco? I'm Getting My Popcorn...

Identity Theft Blog

Welcome to the most progressive identity theft blog which includes original identity theft articles, identity theft tips, and identity fraud victim solutions.

[0x1] LifeLock Lawsuit

[0x2] Identity Theft Seminar

[0x3] Stolen Social Security

[0x4] Affluent Wealthy

[0x5] Digital Love

[0x6] Yahoo Email Account

[0x7] Identity Management Careers

[0x8] Company Identity Theft

[0x9] Medical Identity Theft

[0xA] Red Flags Rules

Jeremy's Brain Dump

Some worthless information from my brain.

[0x1] FISMA

[0x2] Access Controls Article

[0x3] PMP Equations

[0x4] Math

[0x5] What is security

[0x6] New Hosting

[0x7] Wordpress 2.3 and Feedburn Widget

[0x8] So, what is a CISSP anyways?

[0x9] Upgrading the OS on my MythBox

[0xA] Blogs vs. Forums

Security Basics

A high-volume list which permits people to ask "stupid questions" without being derided as "n00bs". I recommend this list to network security newbies, but be sure to read Bugtraq and other lists as well.

[0x1] Re: Reporting SSH abuse

[0x2] Re: Help hardening router

[0x3] RE: Reporting SSH abuse

[0x4] Re: Reporting SSH abuse

[0x5] Re: Help hardening router

[0x6] Reporting SSH abuse

[0x7] Re: Help hardening router

[0x8] Re: Help hardening router

[0x9] Re: Help hardening router

[0xA] RE: Help hardening router

hacklab.to

Toronto's hacker collective

[0x1] Pi Day Party!

[0x2] Esperanto boot camp (Saturday January 23)

[0x3] Learn German on Jan 9!

[0x4] Python Hiatus

[0x5] RubyMine Donation

[0x6] Hacklab in The National Post

[0x7] No, really, it does play Super Mario

[0x8] Living in the Future, or, HackLab Buys a Cupcake

[0x9] miniSoOnCon 2009!

[0xA] Board Update

tanasi.it

Alessandro `jekil` Tanasi blog

[0x1] Cinema: Genitori e Figli. Agitare bene prima dell’uso

[0x2] Lol: Sysadmin

[0x3] Dipendenza dal social network moderno

[0x4] CSS Layouts e templates web gratis

[0x5] Malware trovato sull’Android Market

[0x6] Libri di programmazione gratis

[0x7] Video su intercettazioni tramite cellulari spia

[0x8] Acqua Evian: Il video dei bambini che ballano breakdance sui pattini

[0x9] Lol: Ruby FAIL

[0xA] Cinema: Zoolander

good coders code, great reuse

Peteris Krumins' blog about programming, hacking, software reuse, software ideas, computer security, google and technology.

[0x1] Visual Math Friday

[0x2] Vim Plugins You Should Know About, Part VII: ragtag.vim (formerly allml.vim)

[0x3] Donald Knuth’s First Computer

[0x4] MIT Linear Algebra, Lecture 6: Column Space and Null Space

[0x5] Deriving the Y-Combinator

[0x6] Must-Have Windows Software (or Windows Programs that I use)

[0x7] Famous Perl One-Liners Explained, Part V: Text conversion and substitution

[0x8] How to keep track of who’s talking about you

[0x9] How to Steal a Botnet (Video Lecture Summary)

[0xA] MIT Linear Algebra, Lecture 5: Vector Spaces and Subspaces

Firewall Wizards

Tips and tricks for firewall administrators

[0x1] Call for papers: ISP-10, Orlando, USA, July 2010

[0x2] Re: Inline 2 port POE Firewall

[0x3] Inline 2 port POE Firewall

[0x4] Re: Login straight to priv mode in PIX with TACACS server

[0x5] Login straight to priv mode in PIX with TACACS server

[0x6] Draft paper submission deadline is extended: ISP-10

[0x7] Hackito Ergo Sum 2010 - Call For Paper - HES2010 CFP

[0x8] Re: Is it possible to control access between clients on same LAN with a firewall?

[0x9] Re: Is it possible to control access between clients on same LAN with a firewall?

[0xA] Re: Is it possible to control access between clients on same LAN with a firewall?

MacRumors : Mac News and Rumors

the mac news you care about

[0x1] Apple's Rivalry With Google Gets Personal

[0x2] Apple's iPad Battery Replacement Program Forgoes New Battery, Replaces iPad

[0x3] Tim Cook Receives Bonus of $5 Million and Stock for Performance During Jobs' Absence

[0x4] iPad Submitted to Federal Communications Commission for Approval

[0x5] Apple Already Running Low on iPad Supplies for Launch Day In-Store Pickup Reservations?

[0x6] Apple Estimated to Have Taken 50,000 iPad Orders in First Two Hours

[0x7] Apple Features iWork Applications for iPad

[0x8] Apple Rolls Out iBooks Feature Page

[0x9] iPad's 'Mute' Switch Replaced With Screen Rotation Lock

[0xA] Apple Details iPad 3G Service Sign-Up and Management

The MITRE Digest

The MITRE Digest is an online magazine that showcases our latest work in aviation systems, defense and intelligence, federal sector modernization, homeland security, and cutting–edge research. We cover timely topics that affect our sponsors and the national interest.

[0x1] Software–defined Biosensing: Rapidly Detecting Novel Threats

[0x2] Share and Share Alike: Building an Information Interoperability Toolkit

[0x3] Digest Flashback: Targeting the 25 Most Dangerous Programming Errors

[0x4] Audio Hot Spotting Retrieves Information from Multimedia

[0x5] Millimeter–scale Robots: Small in Stature, Big in Capability

[0x6] MITRE's Collaborative Experimentation Environment: Putting Cooperation to the Test

[0x7] Finding the Way: Taking Web Infrastructure to the Network's Edge

[0x8] MITRE's Cyber Security Operations Center Helps Sponsors Keep Networks Secure

[0x9] Innovative Collaborative Community Helps Warfighters Connect the Dots

[0xA] MITRE Helps Illuminate the Rising Area of Metamaterials

Securityvulns news channel

securityvulns.com vulnerabilities newsline

[0x1] Integer overflow in Autonomy KeyView / Symantec antiviral applications

[0x2] Yahoo Player buffer overflow

[0x3] ncpfs multiple security vulnerabilities

[0x4] dpkg directory traversal

[0x5] Juniper Secure Access crossite scripting

[0x6] HP OpenView Performance Insight code execution

[0x7] GNU tar / cpio buffer overflow

[0x8] XNView buffer overflow

[0x9] Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

[0xA] Microsoft Excel multiple security vulnerabilities, updated since 10.03.2010

Packet Storm Security Advisories

Packet Storm Last 10 Advisories

[0x1] vupensafari-overflow.txt

[0x2] dsa-2014-1.txt

[0x3] USN-911-1.txt

[0x4] dsa-2012-1.txt

[0x5] 03.11.10-1.txt

[0x6] dsa-2013-1.txt

[0x7] MDVSA-2010-061.txt

[0x8] ZDI-10-027.txt

[0x9] ZDI-10-028.txt

[0xA] USN-909-1.txt

Search Engine Watch Discussion Forums

Search Engine Watch Forums

[0x1] white hat and black hat link building

[0x2] Join The SES Affiliate Program

[0x3] Weird Ad Disapproval Process

[0x4] Quickly Critique My Website ?

[0x5] Why Does Bing Get Away With Censorship And Google / Yahoo! Don't?

[0x6] Bing or Yahoo?

[0x7] Google Adwords is it worth ?

[0x8] Multiple domains-one cart- 1 SSL?

[0x9] Any good Information out there?

[0xA] anyone can review my website?

AskApache Web Fire

.htaccess, Net Security, Server Tech, Web Development, Tutorials and Articles. Come through in something amazing.. blazing.

[0x1] PortaPutty Auto-Reconnecting SSH Tunnels on an Encrypted TrueCrypt Portable USB Key w GPG

[0x2] grilled cheese jam session now online

[0x3] Vetted – Top 3 WordPress Speed Plugins

[0x4] Custom bash_profile for Advanced Shell Users

[0x5] Update: Best Free Online Banking

[0x6] Firefox Add-ons for Web Developers

[0x7] Optimizing Servers and Processes for Speed with ionice, nice, ulimit

[0x8] Windows Optimization – Intense Part II

[0x9] Advanced WordPress wp-config.php Tweaks

[0xA] Protecting Files with Advanced Mod_Rewrite Anti-Hotlinking

Aladdin Knowledge Systems Latest Press Releases

Aladdin Knowledge Systems Latest Press Releases - RSS Feed

[0x1] Ontario's York Regional Police Meet Canadian Government Regulations with Aladdin eToken

[0x2] Software Piracy in a Recession - Getting Kicked When You Are Down

[0x3] China's Largest CAD/CAM Software Developer Selects Aladdin HASP SRM

[0x4] HASP SRM v 3.60 Provides Automatic File Wrapping for Windows x64 Applications

[0x5] Aladdin Knowledge Systems to Hold Extraordinary General Meeting of Shareholders on February 20, 2009

[0x6] Blog: When good blogs go bad. Or, What is cool about promoting software piracy?

[0x7] Aladdin Announces HASP SRM SaaS Pass

[0x8] Aladdin Knowledge Systems Enters Into Merger Agreement with Vector Capital Affiliate

[0x9] Aladdin Knowledge Systems Comments on Media Reports about Jasmine Discussions

[0xA] Aladdin Named Finalist in 2009 SC Awards Program

BlogInfoSec.com

An Information Security Magazine in a Blog Format

[0x1] If Your Cyber is Shocked, Wave

[0x2] Net-Witness of the Persecution

[0x3] A-Buzz About Google

[0x4] Negative Testing Revisited – Vehicle Control Systems (Part 2)

[0x5] Negative Testing Revisited – Vehicle Control Systems (Part 1)

[0x6] Please Let Me Explain…

[0x7] H1N1 Threat Overblown? Information Security Relevance? A Logic Proof

[0x8] Cloud Computing Security at Newsweek

[0x9] Protecting Cyberspace … Our Last Opportunity?

[0xA] The Google / China Hack: What you won’t read elsewhere

FaberBrent Security Blog

Security risk resilience TSCM debugging security news corporate espionage counter surveillance covert investigations counter terrorism ITSEC Bug sweeping

[0x1] The birth of the mobile phone and PCI payment

[0x2] Nearly half of Brits use the same password for all accounts

[0x3] $27 billion lawsuit could fold due to $50 covert surveillance device

[0x4] Shocking - The DWP do not keep records of how many times your data has been abused

[0x5] Met Police report shows CCTV costs £20,000 per single conviction - how many would an extra officer get per year?

[0x6] Charity offices bugged

[0x7] Mobile-phone handset complexity - the criminals friend.

[0x8] The security lessons from Britian's largest jewellery robbery

[0x9] Labour MP and Dutch VIP's suffer website data leaks found by a Google search

[0xA] Black-hatter shows how to utilise memory in Apple keyboard to create a hardware key-logger

Web App Security

Provides insights on the unique challenges which make web applications notoriously hard to secure, as well as attack methods including SQL injection, cross-site scripting (XSS), cross-site request forgery, and more.

[0x1] [HITB-Announce] HITBSecConf2010 - Dubai Agenda Released

[0x2] Re: Need a real Java web application with vulnerabilities

[0x3] RE: [WEB SECURITY] Re: Need a real Java web application with vulnerabilities

[0x4] Re: Need a real Java web application with vulnerabilities

[0x5] Re: [WEB SECURITY] Re: Need a real Java web application with vulnerabilities

[0x6] Security BSides Austin - sponsors needed!

[0x7] Re: Need a real Java web application with vulnerabilities

[0x8] Re: Need a real Java web application with vulnerabilities

[0x9] Re: Need a real Java web application with vulnerabilities

[0xA] Re: Need a real Java web application with vulnerabilities

Liquidmatrix Security Digest

Bringing Fire To The Village: Your Source For Computer, Network & Information Security News from Dave Lewis, Security Blogger

[0x1] HSBC Suffers A Data Breach Yet Again

[0x2] South Korea Dealing With Massive Data Breach

[0x3] Atlanta VA Hospital Breach Under Investigation

[0x4] Student Nabbed For Hacking School Computers

[0x5] Certified “Pre-Owned” Items

[0x6] SecurityFocus To Shutter

[0x7] Security Briefing: March 11th

[0x8] Social Media Fail Of The Day

[0x9] Pennsylvania CISO Dismissed From Post

[0xA] CSIS Goes Looking For Help

GovInfoSecurity.com Articles RSS Syndication

GovInfoSecurity.com.com RSS News Feeds on government information security articles.

[0x1] Hope, Concern Behind States' Quest for the Cloud

[0x2] PCI: What's Next and When?

[0x3] NIST Guidance Seen Saving Government Millions

[0x4] GAO: CNCI's Goals are at Risk

[0x5] Howard Schmidt Dismisses Cyberwar Fears

[0x6] FBI Chief Calls for Business Cooperation

[0x7] Survey: Security Salaries Are Up

[0x8] Napolitano Seeks Private-Sector Infosec Help

[0x9] White House Partly Lifts CNCI Secrecy

[0xA] Kneber Botnet Threat to Government IT

Linux Exposed

The Linux Security and hacking Resource

[0x1] Hosted Exchange and Hosted Sharepoint

[0x2] Inspecting HTTP

[0x3] Windows Hacking and Windows Security Site

[0x4] Cracking WPA and WPA2 passwords

[0x5] Ilegal SEO techniques

[0x6] Torrents and SSH Tunnels

[0x7] Preventing Accidental Denial of Service

[0x8] Enhance Security with Port Knocking

[0x9] Analyzing Malicious SSH Login Attempts

[0xA] Formatstrings and OpenBSD

Headquarter, Linux, Network security and research

[0x1] Security threats Toolkit

[0x2] Unusual disk latency: The other day I met a friend and between...

[0x3] Untangle 7.1

[0x4] Lynis 1.2.9

[0x5] Wireshark 1.2.5

[0x6] Multiple Cisco WebEx WRF Player Vulnerabilities

[0x7] US drones hacked by Iraqi insurgents

[0x8] Video Interview with MacBook Bullet Girl

[0x9] Android Forensics

[0xA] Jobs for hackers

Voice&Data RSS Feed

Aggregate RSS Feed

[0x1] It’s time to prepare for IPv6

[0x2] Maintaining electronic records key for legal firms

[0x3] Data recovery complexities increase

[0x4] Teradata Data Warehouse Appliance 2580 with 1 TB drives

[0x5] Optus Business App Store

[0x6] US tops spread of malware

[0x7] Tandberg Data DPS2000 NAS series disk system

[0x8] ADC Krone HighBand cross-connect solutions

[0x9] 3Com TippingPoint and H3C secure network fabric products

[0xA] CommVault cloud-optimised Simpana software

Technibble

A Resource for Computer Repair Technicians & to get PC tech support help.

[0x1] Podnutz Computer Repair Tech Website Builder Review

[0x2] 7 Quick Fix 1.0 – Repair Tool of the Week

[0x3] Excel and Movie Maker – Patched

[0x4] How to Get a Killer Logo and Business Card

[0x5] Bogus iPad Offer on Facebook

[0x6] Office 2010’s Early Release

[0x7] Opera Bug

[0x8] LookInMyPC – Repair Tool of the Week

[0x9] March Patch Tuesday

[0xA] Shout Out To Our Site Advertisers

got privacy?  Musings on the state of Privacy in a connected world. - Blog

Blog

[0x1] Accessibility and Privacy. A Zero Sum Game?

[0x2] Safe Harbor...or Disaster?

[0x3] How will you mark Data Privacy Day?

[0x4] Single Points of Failure. Identifying and managing your human SPOFs

[0x5] Securing Virtual Worlds

[0x6] Why “Gap” is a 4-letter word (part 1)

[0x7] Man drives into post. World gasps.

[0x8] Privacy implications of Twitter Lists

[0x9] Privacy After Death

[0xA] To Google or not to Google? That is the Ethical question.

Twitter / RuggedSoftware

Twitter updates from Rugged / RuggedSoftware.

[0x1] RuggedSoftware: RT @joshcorman: Scott Borg is giving SwA Forum keynote on Malicious Firmware and Manufacturing <- "Certified Pre-pwned" is very scary

[0x2] RuggedSoftware: RT @joshcorman: Challenge: If #Rugged had a "theme song", what would it be? http://bit.ly/dD0IZS ( @daveshackleford don't let me down)

[0x3] RuggedSoftware: .@joshcorman is bringing #Rugged to 12th SW Assurance Forum http://bit.ly/dzdnB7 Thurs AM. They need "Rugged Software" http://bit.ly/dD0IZS

[0x4] RuggedSoftware: .@amrittsering challenges/interviews 2 Rugged founders David Rice and @joshcorman on Beyond the Perimeter http://bit.ly/c8HS33

[0x5] RuggedSoftware: Call for stories of Rugged Software - help us shape rugged by sharing your experience. Please RT! http://bit.ly/aE6aWx

[0x6] RuggedSoftware: RT @wgragido new blog sdlc and security are not mutually exclusive....get rugged! http://bit.ly/bELCty <- Cassandra Security's Rugged take

[0x7] RuggedSoftware: Stay tuned for Rugged on this week's Beyond the Perimeter Podcast with Amrit Williams @amrittsering

[0x8] RuggedSoftware: RT @shrdlu New bloggage: A meme is born. http://layer8.itsecuritygeek.com/layer8/a-meme-is-born/ <- Thx @shrdlu

[0x9] RuggedSoftware: Who's Rugged? Alun is... http://msmvps.com/blogs/alunj/archive/2010/02/10/1756565.aspx

[0xA] RuggedSoftware: 18min @joshcorman interview w/ NetworkWorld http://bit.ly/9axWNO adds context to the Rugged Manifesto http://bit.ly/dD0IZS <-URL fix

Network World on Intrustion Detection and Prevention

The latest intrusion detection and prevention news and analysis from NetworkWorld.com.

[0x1] British Airways IT worker charged for 'terrorism plot'

[0x2] Online banking fraud losses rise to nearly £60 million

[0x3] What Are the Most Overrated Security Technologies?

[0x4] NSW minister apologises for website hack comments

[0x5] Beware the rogue Wi-Fi access point in Windows 7

[0x6] OFT forms new cybercrime-fighting teams

[0x7] Security experts wrestle with cyberattack scenario

[0x8] Goldman Sachs computer tries to rig Robin Hood tax vote

[0x9] Shell security under microscope after massive data leak

[0xA] Einstein 2: U.S. government's 'enlightening' new cybersecurity weapon

Carnal0wnage Blog

carnal0wnage and zero(day) solutions blog

[0x1] VMWare Directory Traversal Metasploit Module

[0x2] metasploit getsystem command

[0x3] KiTrap0d now in metasploit

[0x4] Ruby, Nmap XML, and Databases

[0x5] Various Online Password Crackers

[0x6] 2009 Blog Stats

[0x7] Beating Up On Oracle Book List

[0x8] Hackers -- Net Cafe Series Video circa 1996

[0x9] Digging into SSL Cipher Checking

[0xA] Hacking Unprotected JBOSS JMX Console Installations

Splunk Blogs

[0x1] Go Pro

[0x2] Universally Indexing Business Data

[0x3] Our First Splunk Live! in Munich, Germany

[0x4] Real Life in the Digital World of Warcraft

[0x5] Pollution is Bad

[0x6] Splunk on the road with Accenture, Swisscom, Cox, Atlanta Journal Constitution, Voxeo and Coleman Technologies

[0x7] Guess What Time It Is

[0x8] SCALE in Review

[0x9] Free as in Beer, Free Beer and a Discount Code for RSA

[0xA] Splunk at SCALE 8x in LA This Weekend

Famous Pete Wood Security

My friends tease me about my role in promoting First Base Technologies through public speaking, articles and interviews ... hence calling me 'Famous Pete Wood Security'

[0x1] Hot topics for 2010 - discuss!

[0x2] A Happy New Year for data protection?

[0x3] BCS ELITE annual dinner

[0x4] ISACA European ISRM Conference

[0x5] Facebook bugs galore

[0x6] Global crime networks

[0x7] Skype hack (at last?)

[0x8] Defending the Enterprise webcast

[0x9] How safe is your online bank?

[0xA] A day off

BigBlog.com: Computer Security

The latest in Computer Security

[0x1] Hackers attempt to dupe NetRegistry customers

[0x2] CODE RED Health Care Rally to?Kill The Bill!

[0x3] Australia defends mandatory Internet filter despite concerns

[0x4] Cyber crime solution @ mouse click: Courtesy 22 yr old Indian CEO

[0x5] Hackers attempt to dupe NetRegistry customers

[0x6] Hackers attempt to dupe NetRegistry customers

[0x7] Australia defends mandatory Internet filter

[0x8] Fair Game: Private Equitys Trojan Horse of Debt

[0x9] Joe Hockey attacks internet filter

[0xA] Avnet Helps Sourcefire Increase Its Cybersecurity Market in the UK

Development & Integration White Papers

C Languages, EAI, Java, Visual Basic, and Web Design White Papers

[0x1] Insiders' Guide to Evaluating Remote Control Software

[0x2] Improving Application Development with Digital Libraries

[0x3] Introduction to The Most Popular Commercial Open Source Backup Software - Amanda Enterprise

[0x4] How Can I Back Up MySQL Database Without Killing Application Performance? NetApp and Zmanda Have the Answer.

[0x5] Achieving the Impossible- Unlimited Application Scalability

[0x6] Data Centre Transitions: UNIX to Linux

[0x7] Data Grids and Service  Oriented Architecture

[0x8] An Innovative Approach to Managing Software Requirements

[0x9] Using Virtualization to Maximize Your IT Environment

[0xA] Why Every Data Center Needs Automation

Google Online Security Blog

The latest news and insights from Google on security and safety on the Internet.

[0x1] Federal Support for Federated Login

[0x2] More Information about Malware Details

[0x3] Do machines dream of electric malware?

[0x4] Best Practices for Verifying and Cleaning up a Compromised Site

[0x5] Protecting Users and Ads from Malware

[0x6] Show Me the Malware!

[0x7] The Malware Warning Review Process

[0x8] Malware Statistics Update

[0x9] Ask the Google Anti-Malware Team

[0xA] Improving web browser security

Internet Security News and Analysis

News, commentary and analysis on the threat to our Internet-based infrastructures and to your home computer. Track trends in the cyber threat and stay up to speed on the latest measures you can take to stop the threat to your systems.

[0x1] MSNBC - Cyber attacks on corporations are rising

[0x2] Big Security Guns Should Aim Carefully at Adware, Spyware

[0x3] Ten Not-So-Simple Rules for Using the Internet

[0x4] Networks and Netwars: The Future of Terror, Crime, and Militancy

[0x5] Hackers poison DNS

[0x6] Boston.com / Business / Payroll website still not secured

[0x7] Hackers invaded state Web sites 72 times in five years

[0x8] Hackers invaded state Web sites 72 times in five years

[0x9] Cyber warriors anticipate center

[0xA] Adware maker joins federal privacy board

CSOONLINE.com - Career/Staffing

[0x1] RSA 2010: Infosec Pros Get Raises Despite Recession

[0x2] One Man's Life on the Security D-List

[0x3] Scanning the Security Classifieds

[0x4] Economic Recovery: Will Your IT Security Department Jump Ship?

[0x5] What is a CSO, Part 2

[0x6] Survey: Security Certifications Hot Among IT Pros

[0x7] 7 Ways to Stay Happy in a Miserable Profession

[0x8] Survey Says More Companies Hiring CSOs, Holding Steady on Spending

[0x9] IT Security Outsourcing in Decline; Companies Do More In-house

[0xA] Undercover: A Painful Lack of Security Jobs

The SMB Minute

The SMB Minute

[0x1] Interview with Chirs Nickerson Part3

[0x2] Those Who Cannot Remember the Past are Condemned to Repeat it

[0x3] Your photos are NOT posted online

[0x4] More Phishing attempts

[0x5] Interview with Chris Nickerson Part 2, NOW with BETTER audio

[0x6] Interview with Chris Nickerson (part 1)

[0x7] More fake antivirus

[0x8] Great Resource for Windows 7 tweaks.com

[0x9] We’re Conducting a Survey

[0xA] Facebook Phishing/Scam

InternetNews Realtime News for IT Managers

All the top news, features, analysis and insight into enterprise and Internet technology, geared for IT managers and delivered by the best in the industry.

[0x1] Google Warned Against Challenging China's Laws

[0x2] Apple's COO Tim Cook Gets $22M Pat on the Back

[0x3] Twitter Takes Geo-Location Feature Live

[0x4] Microsoft Loses Another Round in i4i Case

[0x5] Apple off to a Smooth Start With iPad Launch

[0x6] Google Offers Local Product Availability Search

[0x7] McAfee's Got the Skinny on Scareware

[0x8] Awareness Helps Firms Manage Social Networks

[0x9] Windows Mobile Still Losing Share

[0xA] Bing Coming to Motorola Android Handsets

The Ethical Hacker Network RSS News Feed

Most Recent Additions to The Ethical Hacker Network, the best, single source of educational content for forensics, pen testing and incident response. Hacker Challenges with prizes, free monthly giveaways, tutorials, articles, forums, certification info and more.

[0x1] March 2010 Free Giveaway Sponsor - Offensive Security

[0x2] Feb 2010 Free Giveaway Winners - Syngress Publishing

[0x3] Final Course and Exam Review: Pen Testing with BackTrack

[0x4] Interview: Joe McCray of LearnSecurityOnline

[0x5] SSHliders - Answers

[0x6] Jan 2010 Free Giveaway Winner - Black Hat DC

[0x7] EH-Net January 2010 Newsletter

[0x8] Interview: Ferruh Mavituna on Netsparker

[0x9] Book Review: PCI Compliance

[0xA] Miracle on Thirty-Hack Street

ITILSec.com - Collaborative Security - Published news

[0x1] How to Get Your Ex Back

[0x2] Стиральные Машины

[0x3] Телевизоры

[0x4] Холодильники

[0x5] Пылесосы

[0x6] Телефоны

[0x7] Мебель

[0x8] Квартиры

[0x9] Нотариус Одесса

[0xA] Знакомства

The Falcon's View

Mental meanderings of an infosec obsessive...

[0x1] Security BSides Austin 2010 - Join Us Saturday!

[0x2] RSA 2010 - Day 2 Round-up

[0x3] RSA 2010 - Day 1 Round-up

[0x4] RSA 2010 - Innovation Sandbox: Not Really Innovative

[0x5] Annual ABA ISC+EDDE Meeting After-Report

[0x6] The Need for Consumer-Oriented Intervention

[0x7] RSA 2010 Is Nearly Here

[0x8] Micro-Generation Closer to Reality

[0x9] A Sense of Self-Preservation

[0xA] 2010 CWE/SANS Top 25 Most Dangerous Programming Errors Released

Episteme: Belief. Knowledge. Wisdom

[0x1] Return-to-Barry-White Human Exploitation

[0x2] NLP for Social Engineers

[0x3] Hacker Halted Redux

[0x4] Recap: The Hope Symposium

[0x5] Social Engineering Abounds

[0x6] Greed as a prime motivator

[0x7] Constraints and The Bandwidth Problem

[0x8] Social Networking and Security

[0x9] Obama and Hypnosis

[0xA] NLP is not Science

What's New

What's New at FIRST website

[0x1] The 2010 Program is now available online!

[0x2] FIRST welcomes three new teams

[0x3] ICANN and FIRST are hosting a Joint Cybersecurity Workshop

[0x4] FIRST Welcomes Neustar to the Sponsorship Team!

[0x5] 2010 dates for the Corporate Executive Program!

[0x6] FIRST is accepting theme suggestions for the 23rd Annual FIRST Conference in Vienna in 2011

[0x7] New Exhibitors for Miami 2010

[0x8] FIRST welcomes four new teams in January

[0x9] FIRST has established relationships with both ISO and ITU-T

[0xA] Please join us in welcoming new teams and thanking their sponsors

evilrouters.net

im in ur datacentrz configurin' ur routerz

[0x1] BGP Route Reflectors

[0x2] BGP Conditional Advertisements

[0x3] Configuring SNMPv3 on Catalyst switches

[0x4] Pingdom Monthly Report

[0x5] Cisco CCNP TSHOOT exam topology

[0x6] Here’s something you don’t see everyday

[0x7] Use scapy to send JunOS killin’ packet

[0x8] JunOS PSN-2010-01-623 Exploit

[0x9] The right way to host your website

[0xA] My Thoughts on Christmas

WEB-HACK.ru

Новостной портал по сетевой безопасности!

[0x1] Надежный и безопасный хостинг для белых проектов

[0x2] Data Guardian v1.5.9

[0x3] Топ-20 тем спама о Дне Святого Валентина

[0x4] Хакеры атакуют сторонников Барака Обамы

[0x5] Взлом сайта Общественной палаты

[0x6] ESET обновлила антивирус для смартфонов

[0x7] Kaspersky Security Bulletin. Развитие угроз в 2008 году

[0x8] Kaspersky Security Bulletin. Основная статистика за 2008 г.

[0x9] Kaspersky Security Bulletin. Спам в 2008 г.

[0xA] Хакеры получили доступ к данным 4,5 млн. человек на Monster.co.uk

Cisco Security Advisories

Cisco Security Advisories (the 40 most recent advisories)

[0x1] Cisco Unified Communications Manager Denial of Service Vulnerabilities

[0x2] Cisco Digital Media Player Remote Display Unauthorized Content Injection Vulnerability

[0x3] Multiple Vulnerabilities in Cisco Digital Media Manager

[0x4] SNMP Version 3 Authentication Vulnerabilities

[0x5] Multiple Vulnerabilities in Cisco Security Agent

[0x6] Cisco Firewall Services Module Skinny Client Control Protocol Inspection Denial of Service Vulnerability

[0x7] Multiple Vulnerabilities in Cisco ASA 5500 Series Adaptive Security Appliances

[0x8] Multiple Vulnerabilities in Cisco IronPort Encryption Appliance

[0x9] Multiple Vulnerabilities in Cisco Unified MeetingPlace

[0xA] Transport Layer Security Renegotiation Vulnerability

Hak5 - Technolust since 2005

[0x1] Episode 704 – Malware Analyzis Sandbox and PC Remote Control over Twitter

[0x2] Episode 703 – Free Application Sandbox Challenge and Top “Ultra” Warez

[0x3] Episode 702 – DHCP Exhaustion and DNS Man-in-the-Middle

[0x4] Episode 701 – Botnet Command & Control and Man-in-the-Middle detection

[0x5] Cave Story

[0x6] Episode 620 – IP Spoofing, World of Goo Mods, Linux Drive Encryption, Ultralight Notebooks and much more

[0x7] Episode 619 – Hospitalized Hacking: Droid Tether, Theme Generation & more

[0x8] Boot Google’s Chromium OS live from USB

[0x9] Play Doom on the hacked Zipit Z2

[0xA] Hacking the Motorola Droid: Root Access!

Securityvulns exploits channel

Securityvulns exploits newsline

[0x1] yahooex.pl

[0x2] sudo-xpl.sh

[0x3] easyftp.py

[0x4] operaex.html

[0x5] iMailDecrypt.py

[0x6] nautiluspoc.tar.gz

[0x7] cmsd_exploit.c

[0x8] 360secex.c

[0x9] serversman.py

[0xA] Rising0day.cpp

Shon Harris' Amazon Blog

Shon Harris' Amazon Blog

[0x1] You don't need to meet any requirements to sit the exam - you can gain them as time goes on.

[0x2] Economical Uncertainities

[0x3] New Material on the CISSP Exam in 2009?

[0x4] Connecting with Shon Harris

[0x5] Part 5 of 5 - Having the Right Perspective on the World of Security

[0x6] Part 4 of 5 - Learning Security through the View of CISSP versus Reality

[0x7] Part 3 of 5 - Is It Really A Waste Of Time To Learn About The Wide Spectrum Of Topics Covering Security?

[0x8] Part 2 of 5 -Training For CISSP – The Early Days

[0x9] Busting through the Myths of the CISSP Exam

[0xA] What do CISSPs Really Know?

NYT > Cryptography

News about cryptography, including commentary and archival articles published in The New York Times.

[0x1] Universities Spar Over Disappearing Electronic Messages

[0x2] Goodbye, Passwords. You Aren’t a Good Defense.

[0x3] Adding Math to List of Security Threats

[0x4] Studios’ DVDs Face a Crack in Security

[0x5] A Cryptologist Takes a Crack at Deciphering DNA’s Deep Secrets

[0x6] Graduate Cryptographers Unlock Code of 'Thiefproof' Car Key

[0x7] TECHNOLOGY; Researchers Develop Computer Techniques to Bring Blacked-Out Words to Light

[0x8] A Simpler, More Personal Key To Protect Online Messages

[0x9] Light Study Backs Teleportation, But Don't Try Beaming Up Yet

[0xA] Microsoft to Give Governments Access to Code

The most recent News from Incisive Media

The most recent News from Incisive Media (Generated on Monday 15 March 2010 at 12:07:29)

[0x1] Exclusive: Biossence maps out waste-to-energy master plan

[0x2] Public sector energy efficiency loan scheme hails successful first year

[0x3] Blue Coat launches new Virtual WAN Optimisation products

[0x4] Virtualised servers face security questions

[0x5] Vigil offers free compliance audit

[0x6] Meru values itself at more than $200m

[0x7] ChannelWeb's top five

[0x8] Leonard Curtis fail to secure buyer for Stockport FC

[0x9] Cisco: high prices cost SMEs customers

[0xA] Japanese firms join forces to promote electric car charging standard

Wired: Threat Level

Kevin Poulsen and Ryan Singel's daily briefing on security, freedom and privacy in the wired and unwired world.

[0x1] FBI Hoaxes Boost Online Fraud

[0x2] NetFlix Cancels Recommendation Contest After Privacy Lawsuit

[0x3] China Warns Google Over Search Censorship

[0x4] TJX Hacking Conspirator Gets 4 Years

[0x5] Hate Blogger Wins Second Mistrial

[0x6] Pink Floyd Beats EMI in Creativity Flap

[0x7] Feds: TSA Worker Tried to Sabotage Terror Database

[0x8] Obama Supports DNA Sampling Upon Arrest

[0x9] Classmates.com’s Facebook Mimicking Prompts Privacy Suit

[0xA] European Parliament Rips Global IP Accord

Technology News

Get the latest technology news, comment and anlaysis from the Telegraph.

[0x1] SXSW: Wolfram Alpha wins 'best in show'

[0x2] Dotcom celebrates 25th anniversary

[0x3] Mother's Day celebrated with Google sheep doodle

[0x4] Toshiba Cell TV

[0x5] 3DTV: What the 'big four' are offering

[0x6] Should you buy a 3D TV?

[0x7] Google Street View: survey raises privacy concerns

[0x8] Virgin Media to trial 50mbps broadband over telegraph poles

[0x9] Man fined over Facebook insult to ex-girlfriend

[0xA] Ban demand on websites that allow promotion of self-harm among teens

Layer 7 Technologies

Layer 7 Technologies markets a family of XML appliances and software to secure, simplify and scale Web services.

[0x1] New Article - Layer 7 Expands into Dutch Market with ION-IP Partnership - ChannelWeb

[0x2] New Press Release - Working Opportunity Fund makes follow on investment in Layer 7 Technologies (February 2, 2009)

[0x3] New Award - 2009 Ready to Rocket List - Rocketbuilders

[0x4] Watch VP Marketing & Alliances, Dimitri Sirota, interviewed by Sys-Con.TV at JavaOne Conference in June, 2008.

[0x5] New Press Release - SOA Consortium Releases New Podcast from K. Scott Morrison, Layer 7 Technologies, on How to Fail at SOA (August 18, 2008)

[0x6] New Press Release - Layer 7 Joins SOA Consortium as Silver Sponsor (June 30, 2008)

[0x7] New Article - Layer 7 Nominated for SYS-CON's "SOA World Magazine Readers' Choice Awards": The SecureSpan XML Networking Gateway Nominated for "Best Security Solution" - SOA World

[0x8] New Press Release - Layer 7 Technologies Enhances Field Collaboration for SOA Through HP ISV Marketplace Referral Program (June 18, 2008)

[0x9] New Article - Layer 7 to Provide Security and Operational Governance for Sun Java CAPS - eBizQ

[0xA] New Press Release - Layer 7 Technologies to Provide Security and Operational Governance for Sun Java CAPS (June 9, 2008)

Lifedork

still GeeX? still SuX!

[0x1] how to view private myspace pictures with ViewMorePix.com

[0x2] Backtrack 4 Tutorial : Installing backtrack 4 to hardisk

[0x3] view facebook private photos with Photo Stalker

[0x4] Nmap 5 has been released !

[0x5] how to view private myspace profiles

[0x6] Xss scanner

[0x7] Download Yahoo invisible detector script

[0x8] Firefox 3.5 zero day exploit released

[0x9] Download Backtrack 4 Pre Final and Backtrack 4 Guide

[0xA] Firefox Keylogger Add on videos

Mu Dynamics Research Labs

[0x1] Using Map/Reduce for Network Forensics and Troubleshooting

[0x2] Evolution of Testing

[0x3] Announcing xtractr - unleash the power of packets

[0x4] 7 things you didn’t know about pcapr

[0x5] Hearing noises in your backyard?

[0x6] Popcorn - Data Driven Testing with JSON

[0x7] Multi-dimensional data visualization

[0x8] Wireshark, dissectors and fuzzers

[0x9] Collaborative Network Forensics

[0xA] Multiple sscanf vulnerabilities in Asterisk

Tactical Web Application Security

Tac-ti-cal: of or relating to combat tactics: of or occurring at the battlefront <a tactical defense>

[0x1] WAF Virtual Patching Workshop at Blackhat USA 2010

[0x2] Top 10 Hacks of 2009 and WAF Mitigations

[0x3] IP Reputation and WAFs

[0x4] Weekly Round-Up of Web Hacks, Attacks and Vulns (Monday, Mar 1)

[0x5] Weekly Round-Up of Web Hacks, Attacks and Vulns (Monday, Feb 22)

[0x6] CWE/SANS Top 25 Most Dangerous Programming Errors 2010 - WebApp Focus Profile

[0x7] Weekly Round-Up of Hacked Websites (Monday, Feb. 15)

[0x8] Beware of Web App Sec Puffery

[0x9] Top 10 Targeted Passwords

[0xA] 2010 Web Application Security Predictions

CSOONLINE.com - Application Security

[0x1] Seven Firefox Plug-ins That Improve Online Privacy

[0x2] What Are the Most Overrated Security Technologies?

[0x3] Excel Vulnerabilities Revealed on 'Slower' Patch Tuesday

[0x4] Auto of the Future? New Cars Add Infosec Technology

[0x5] Opera to Patch Browser Vulnerability Soon

[0x6] RSA 2010: Can Adobe Stop the Hate?

[0x7] RSA Conference 2010: 4 Survival Tips

[0x8] IBM: Vulnerabilities Fell in 2009, but Other Risks Abound

[0x9] Security B-Sides: Rise of the 'Anti-conference'

[0xA] Twitter Attacks: How to Alert Connections of a Social Network Hack

Rootsecure.net

The security news site for systems administrators & hackers - keeping you informed about all the top security news stories updated daily

[0x1] Daily Record: Royal Bank of Scotland raiders' huge 6m haul in just 12 hours

[0x2] WSJ: Forbidden Fruit - Microsoft Workers Hide Their iPhones

[0x3] Computer World: The iPad paradox - Less is more "A new trend has emerged where gadget limitations are touted as features"

[0x4] c|net: Privacy is not dead, says SXSWi keynoter Boyd "Privacy is not dead in the era of online social networking. It just needs careful curation."

[0x5] CNN: Privacy concerns hinder 'real-time Web' creation, developers say

[0x6] Light Blue Touchpaper: Whats worrying the spooks?

[0x7] Slashdot: GPS Log Analysis Uncovers Millions In NYC Taxi Overcharges

[0x8] PC Pro: The dark side of the web

[0x9] Reuters: Google 99.9 pct sure to shut China search engine - report

[0xA] Invisible Things: Independent Attack Discoveries

What's New @ Mu

[0x1] Using Map/Reduce for Network Forensics and Troubleshooting

[0x2] Collaborative Cloud App Makes Testing IP Services Faster, Easier

[0x3] Mu Dynamics Introduces xtractr, a Collaborative Cloud Application for Network Troubleshooting, Problem Isolation, and Forensics

[0x4] New Mu Dynamics site survey, take a minute to fill it out

[0x5] Vulnerability analysis: Mu Dynamics

[0x6] IMS: Can it reliably deliver Voice over LTE (VoLTE)?

[0x7] Mu Dynamics pcapr Packet Networking Site Reaches One-Year Mark

[0x8] Mu Dynamics Honored As One Of The ‘Top 20 Products in Last 20 Years’ by SC Magazine

[0x9] Trust No One (Mu Dynamics Blog)

[0xA] pcapr - Web 2.0 for packets

Government Technology Web Strategies News

Government Technology: News: Web Strategies

[0x1] Healthy Kids Apps Competition Offers Super-Sized Cash Prizes

[0x2] Can the Library of Congress Be Downloaded in Seconds?

[0x3] South Carolina Redesigns State Web Portal, Adds Features

[0x4] Alabama Debuts iPhone App for Government Info

[0x5] Hillsborough County, Fla., Seeks Budget Cutting Ideas via Social Media

[0x6] Michigan Includes Geo-Location in New State Web Portal

[0x7] San Francisco and Partnering Cities Launch 311 Open Source

[0x8] Pentagon Embraces Web 2.0 in Social Media Policy

[0x9] Seattle Announces Open Data Web Site

[0xA] California CIO Issues Use Policy for Facebook, YouTube, Other Social Media

TippingPoint DVLabs Threat Protection Updates

Monthly threat protection updates from TippingPoint DVLabs. For more information, visit dvlabs.tippingpoint.com

[0x1] TippingPoint DVLabs Threat Protection Update - November 2009

[0x2] TippingPoint DVLabs Threat Protection Update - July 2009

[0x3] TippingPoint DVLabs Threat Protection Update - June 2009

[0x4] TippingPoint DVLabs Threat Protection Update - May 2009

[0x5] TippingPoint DVLabs Threat Protection Update - April 2009

[0x6] TippingPoint DVLabs Threat Protection Update - March 2009

[0x7] TippingPoint DVLabs Threat Protection Update - February 2009

[0x8] TippingPoint DVLabs Threat Protection Update - January 2009

[0x9] TippingPoint DVLabs Threat Protection Update - December 2008

[0xA] TippingPoint DVLabs Threat Protection Update - October 2008

GeniusHackers.Com

Hacking, Network security and tech blog

[0x1] 21 interesting Online Games

[0x2] 10 best FTP Clients for win, linux, mac

[0x3] A core peek into chrome netbook

[0x4] An editorial take on Google Chrome OS

[0x5] Write for us and win RapidShare premium account and cash.

[0x6] Firewall administration

[0x7] Play multiplayer games via LAN and WLAN

[0x8] Remote Network Penetration via NetBios Hack on a windows PC

[0x9] SwiftThemes.Com launched, now you can download theme SWIFT

[0xA] Swift | The fastest loading wordpress theme from GeniusHackers.Com

The Hacker Diaries

Ethical Hacking, Security Tools, and all things Cyber Security

[0x1] Inside the Mind of a Hacker

[0x2] Hacktivists change the Global Warming Debate

[0x3] Protecting from Identity Theft? A good Start

[0x4] Social Security number code cracked, study claims

[0x5] Pink Floyd star David Gilmour joins fight to halt extradition to US of hacker Gary McKinnon

[0x6] The Myth of the Virus Free Mac

[0x7] Hackers launch phishing attack on Facebook users

[0x8] Social Networking making it easier for Hackers

[0x9] Twitter’s porn name game a hit with Hackers

[0xA] Anti-Virus Sites have XSS vulnerabilties??

GovInfoSecurity.com Agency Alerts RSS Syndication

GovInfoSecurity.com RSS News Feeds on government information security agency alerts.

[0x1] NIST IR 7669 (Draft): Open Vulnerability and Assessment Language Validation Program Test Requirements

[0x2] NIST Special Publication 800-73-3: Interfaces for Personal Identity Verification, Part 4

[0x3] NIST Special Publication 800-73-3: Interfaces for Personal Identity Verification, Part 3

[0x4] NIST SP 800-73-3: Interfaces for Personal Identity Verification, Part 2

[0x5] NIST SP 800-73-3: Interfaces for Personal Identity Verification, Part 1

[0x6] NIST Special Publication 800-37 Revision 1: Guide for Applying the Risk Management Framework to Federal Information Systems A Security Life Cycle Approach

[0x7] NIST: Guidelines for the Secure Deployment of IPv6 (Draft)

[0x8] President Obama's Healthcare Reform Plan

[0x9] Capability of the People's Republic of China to Conduct Cyber Warfare and Computer Network Exploitation

[0xA] DoJ: Report to Congress on Implementation of Section 1001 of the USA PATRIOT Act

Published Security Alerts

Published Security Alerts

[0x1] SQL Injection in SYS.KUPV$FT in Oracle 10g. Rel. 1

[0x2] SQL Injection in SYS.KUPV$FT_INT in Oracle 10g. Rel. 1

[0x3] Event 10053 logs TDE wallet password in cleartext

[0x4] Transparent Data Encryption stores key unencrypted in the SGA

[0x5] Cross-Site-Scripting in Oracle Workflow wf_route

[0x6] Cross-Site-Scripting in Oracle Workflow wf_monitor

[0x7] Shutdown listener via iSQL*Plus

[0x8] Shutdown listener via Forms Servlet

[0x9] Plaintext Passwords logged during Installation of Oracle HTMLDB

[0xA] Cross-Site-Scripting Vulnerabilities in Oracle HTMLDB

US-CERT Cyber Security Tips

US-CERT Cyber Security Tips describe and offer advice about common security issues for non-technical computer users. Tips are restricted to a single topic, although complex issues may span multiple tips. Each tip builds upon the knowledge, both terminology and content, of those published prior to it.

[0x1] ST05-003: Securing Wireless Networks

[0x2] ST04-022: Understanding Your Computer: Web Browsers

[0x3] ST04-021: Understanding Your Computer: Operating Systems

[0x4] ST04-020: Protecting Portable Devices: Data Security

[0x5] ST04-019: Understanding Encryption

[0x6] ST04-018: Understanding Digital Signatures

[0x7] ST04-017: Protecting Portable Devices: Physical Security

[0x8] ST04-016: Recognizing and Avoiding Spyware

[0x9] ST04-015: Understanding Denial-of-Service Attacks

[0xA] ST04-014: Avoiding Social Engineering and Phishing Attacks

Latest Secunia Blog Entries

Secunia collects, evaluates, verifies, and analyses vulnerability information.

[0x1] RSA 2010 – good news for online security

[0x2] An Interesting Microsoft Tuesday

[0x3] Technology Review Article: Patching the Security Update Process

[0x4] Confusion about Opera vulnerability

[0x5] InfoWorld Article: Typical Windows user patches every 5 days

[0x6] Softpedia Article: Secunia Readies Free Automatic Patching Solution

[0x7] Webuser Article: Home PCs need patching every 4.8 days

[0x8] Dark Reading Article: Secunia To Offer Free Application Updater Service To Consumers

[0x9] V3.co.uk Article: Secunia offers free patch management to all

[0xA] Patching redefined – Free & Automatic Updating for every single PC user

CSOONLINE.com - Loss Prevention

[0x1] Social Engineering: The Basics

[0x2] Supply Chain Security Threats: 5 Game-Changing Forces

[0x3] DHS: Counterfeit Goods Still Rampant in U.S.

[0x4] Checklist: 11 Security Tips for Black Friday, Cyber Monday

[0x5] 4 Cheap Options to Monitor Networks for Evidence

[0x6] Report: Retail Shrink, Theft Up in 2009

[0x7] Counterfeit Money: Still Going Strong

[0x8] Organized Crime and Retail Theft: Facts and Myths

[0x9] Special Report: Security Versus the Mob

[0xA] Study: Air Cargo Security Seriously Lacking

HacDC

HacDC's mission is to improve the world by creatively rethinking technology.

[0x1] AVR Programming Class

[0x2] Army Launches "Apps for the Army" Development Challenge (Todd Fine)

[0x3] Kit Build - Junior Theremin

[0x4] Hardware Hacking Course

[0x5] Wireside Chat and Artificial Intelligence

[0x6] Kit Build - LED Heart

[0x7] HacDC Lightning Talks

[0x8] Hacker's Lounge CANCELED

[0x9] Hacker's Lounge this Friday (2/5)! [CANCELED]

[0xA] DorkbotDC Meeting!

InformationWeek - All Stories And Blogs

InformationWeek

[0x1] Global CIO: IBM And Microsoft Clash Over Unbundling Policy

[0x2] Dot-Com Turns 25: Commercial Blockbuster Just Gets Started

[0x3] Cybercriminals At GDC; Microsoft At MIX10

[0x4] Smartphones To Usher In Online Paid Content?

[0x5] Rumble In The Educational Market

[0x6] SXSW Video Demo: Mojito Internet Device

[0x7] More Anti-Virus Fail

[0x8] VoiceCon 2010 Spotlights Convergence

[0x9] Cross-Hypervisor VKernel Offers Free Capacity Tool

[0xA] InformationWeek's RSS Feed is brought to you by

OSVDB Blog :

Everything Is Vulnerable

[0x1] iDefense VCP as seen through OSVDB

[0x2] February Update: OSVDB Winter 2010 Fundraising Goal

[0x3] Time to.. Track More Data

[0x4] Open Security Foundation - Advisory Board - Call for Nominations

[0x5] Open Security Foundation - State of the Union 2010

[0x6] January Update: OSVDB Winter 2010 Fundraising Goal

[0x7] Microsoft, Aurora and something about forest and trees?

[0x8] Challenge: OSVDB Winter 2010 Fundraising Goal

[0x9] Adobe, Qualys, CVE and Math

[0xA] OSVDB 2009 Q4 Changelog

XSSed syndication

You are welcome to syndicate and share xssed.com contents

[0x1] Browser Hijacking Techniques 2009

[0x2] WordPress.com permanent XSS vulnerability

[0x3] How to write a XSS (cross site scripting) worm for McCodes sites

[0x4] Open redirect vulnerabilities: definition and prevention

[0x5] Paper: Smashing the Web for fun & profit using XSS

[0x6] Paper: Defending against XSS with .NET

[0x7] Paper: Carnival, or how to camouflage data for XSS filters

[0x8] Firefox extensions for web developers and penetration testers

[0x9] Paper: Real World XSS

[0xA] Paper: The XSS Epidemic: Tools for discovery and remediation

FON Blog (English)

[0x1] Fonera SIMPL Filmed at Mobile World Congress 2010

[0x2] FON and DEVICESCAPE partner to provide easy WiFi connectivity

[0x3] FON Launches the PeekFON with Free PanEuropean GPRS Roaming

[0x4] New Firmware For Fonera 2.0g!

[0x5] Fonera 2.0N On Sale Now!

[0x6] FON UNVEILS INNOVATIVE WEB APPLICATIONS WiFi ROUTER – THE FONERA 2.0N

[0x7] Business Week Fifty Tech Startups You Should Know

[0x8] FON Partners With E-Plus!

[0x9] Fonera 2.0 In Stock!

[0xA] MSI Wind and Fonera 2.0 for 379 Euros!

kuro5hin.org

technology and culture, from the trenches

[0x1] Ogg Frog Magazine #6

[0x2] The Secret: A Review of Dulcinea Technologies Corporation's Debut Product

[0x3] Cars, Value Engineering, and Bugs

[0x4] Hopeless romantic Chinese Ph.D candidate arrested

[0x5] The Jarmidor, Part 3

[0x6] 15 Yards: The Unsportsmanlike Tax Evasion of the NFL

[0x7] Obama The First Year

[0x8] Our Trip to Cuba

[0x9] Applying the First Amendment to Corporations: Well established and a good idea

[0xA] Tweaking K5

shell-fu

[0x1] Tip #894: Watch for Ubuntu 9.10 Launch

[0x2] Tip #892: Check memory and swap from command line

[0x3] Tip #889: Convert virtually any video into a DVD-valid MPEG2 stream

[0x4] Tip #885: Random password generator.

[0x5] Tip #882: Find last modified files on a filesystem

[0x6] Tip #879: Learn not to mistype ls

[0x7] Tip #878: Random xkcd comic

[0x8] Tip #874: Count how many packages have been installed by pacman

[0x9] Tip #873: Import ssh host keys without verification

[0xA] Tip #872: Reverse geocode with bash

Data Management White Papers

Business Intelligence, Database, Data Warehouse, Knowledge Management, and Oracle White Papers

[0x1] Insiders' Guide to Evaluating Remote Control Software

[0x2] Automated Sales Order Processing for Order-to-Cash Performance with SAP(R) Solutions

[0x3] Closing the Order to Cash Performance Gap: Between Document Processes and SAP(R) Solutions

[0x4] Order-to-Cash Best Practices for Billing Documents - Automated Access and Delivery

[0x5] Automating Complete PO Document Packages for Procure-to-Pay Performance with SAP(R) Solutions

[0x6] The Learning Organization Goes Digital

[0x7] 10 Tips - IT Training Support

[0x8] How to Make Your IT Staff Smarter

[0x9] Improving Application Development with Digital Libraries

[0xA] Working Green with Digital Libraries - How it Can Help

Kaspersky Lab Weblog

[0x1] When too much is not enough too much.

[0x2] Patch Tuesday

[0x3] Too many passwords?

[0x4] More on Yxe

[0x5] Return of the Yxe worm

[0x6] The football World Cup kicks off in South Africa

[0x7] Cascading false positives

[0x8] Need a Valentine‘s gift?

[0x9] On the way to better testing

[0xA] Patch now: MS10-002

IT Management & Trends White Papers

CIO, Emerging Technologies, and Project Management White Papers

[0x1] Insiders' Guide to Evaluating Remote Control Software

[0x2] Best-Practice Automation of Invoice Delivery from SAP(R) Solutions - Keeping Customers Satisfied While Making the Move

[0x3] The Learning Organization Goes Digital

[0x4] 10 Tips - IT Training Support

[0x5] How to Make Your IT Staff Smarter

[0x6] Improving Application Development with Digital Libraries

[0x7] Working Green with Digital Libraries - How it Can Help

[0x8] Minimizing Technology Project Delays with Digital Libraries

[0x9] How VMware Virtualization Right-sizes IT Infrastructure to Reduce Power Consumption

[0xA] Reduce Energy Costs and Go Green with VMware Virtualization

Raffy - Security Data Visualization

IT security data visualization and log management as seen by Raffael Marty

[0x1] RSA Security Conference – Cloud the Logging Killer App?

[0x2] links for 2009-12-30

[0x3] Applied Security Visualization Book seen in Singapore

[0x4] links for 2009-07-01

[0x5] CISCO Subnet Blogging in May

[0x6] Data Visualization in the Cloud – PixlCloud

[0x7] links for 2009-03-11

[0x8] The Security Market As Seen By Peter Kuper

[0x9] Security Visualization and Log Analysis Workshop – Sign up now!

[0xA] links for 2009-02-12

AIRC Blog

AIRC Blog

[0x1] Hackers use a Facebook hoax to plant Rouge Antimalware

[0x2] Johnny Depp fake death notice - fake ActiveX codec

[0x3] Top 10 Chinese cyber attacks

[0x4] Out-of-band patch for the Aurora exploit will be released today by Microsoft

[0x5] Google vs. China - Round 1

[0x6] Hacking TLS

[0x7] Malware spreading via 'Facebook Password Reset Confirmation' email

[0x8] Microsoft Security Bulletin Summary for October 2009

[0x9] Microsoft Security Bulletin Summary for September 2009

[0xA] Hackers use Twitter to control botnets

Full Disclosure

An unmoderated high-traffic forum for disclosure of security information. Fresh vulnerabilities sometimes hit this list many hours before they pass through the Bugtraq moderation queue. The relaxed atmosphere of this quirky list provides some comic relief and certain industry gossip. Unfortunately 80% of the posts are worthless drivel, so finding the gems takes patience.

[0x1] Re: SecurityFocus to partially shut down

[0x2] [Tool] sqlmap 0.8 released

[0x3] Vulnerability in phpAdsNew, OpenAds and OpenX

[0x4] Re: new facebook vulnerability

[0x5] Re: SecurityFocus to partially shut down

[0x6] [SECURITY] [DSA 2016-1] New drupal6 packages fix several vulnerabilities

[0x7] Re: SecurityFocus to partially shut down

[0x8] Re: SecurityFocus to partially shut down

[0x9] Re: SecurityFocus to partially shut down

[0xA] Re: [HITB-Announce] HITBSecConf2010 - Dubai Agenda Released

Security Bytes

[0x1] Static source code analysis turned on its head

[0x2] RSA panel weighs PCI implications of cloud computing

[0x3] Shamir acknowledges chip-and-PIN attack as his favorite

[0x4] Secure cloud concept built on new Intel processor

[0x5] This you??? Twitter phishing campaign spreads rapidly

[0x6] FTC probes P2P corporate data leaks

[0x7] Microsoft patching issue tied to Alureon rootkit

[0x8] How to turn off Google Buzz and avoid privacy issues

[0x9] Spyware code targets BlackBerry users

[0xA] Torrent phishing scheme trips up Twitter users

LinuxSecurity.com: Foresight Advisories

The central voice for Linux and Open Source security news.

[0x1] Study: Spammers use e-mail ID to gain legitimacy

[0x2] Review: Mod-Security 2.5 by Magnus Mischel

[0x3] Foresight: firefox

[0x4] Foresight: python

[0x5] Foresight: firefox

[0x6] Foresight: imageop

[0x7] Foresight: nss_ldap

[0x8] Foresight: rsync

[0x9] Foresight: e2fsprogs

[0xA] Foresight: tetex

Lenny Zeltser's Website

Lenny Zeltser's publications, research, and projects related to information security, risk management, business, and life in general.

[0x1] Critical Log Review Checklist for Security Incidents

[0x2] 5 Steps to Building a Malware Analysis Toolkit Using Free Tools

[0x3] SANS Malware Course Now Covers Analysis of Malicious Documents and Memory Forensics

[0x4] Interview on InfoSec Daily Podcast

[0x5] Analyzing Malicious Documents Cheat Sheet

[0x6] What to Include in a Malware Analysis Report

[0x7] Free Online Tools for Looking Up Potentially Malicious Websites

[0x8] Public Blocklists of Suspected Malicious IPs and URLs

[0x9] Free Automated Malware Analysis Services

[0xA] What to Include in a Malware Analysis Report

CSO Blogs - Career

[0x1] Cauldron Gets Rave Reviews from Raytheon

[0x2] We Need Visibility Like a Police Log

[0x3] Routh to JP Morgan Chase; Kennedy to Praetorian

[0x4] Hacker, Cracker, Salafi, Spy - Be There!

[0x5] Connecticut AG files HITECH Act Law Suit…holy IT health records enablement!!

[0x6] Problem 5: Are You An Insider Threat?

[0x7] Hold Developers Legally Accountable for Software Security Flaws?

[0x8] The Customer is Clueless – Not!

[0x9] CyberTerror - the Arms Race We're Losing

[0xA] High Tech Firms Who Outsource Software Development to China - The Dirty Little Secret

Splunk Blogs

[0x1] Go Pro

[0x2] Universally Indexing Business Data

[0x3] Our First Splunk Live! in Munich, Germany

[0x4] Real Life in the Digital World of Warcraft

[0x5] Pollution is Bad

[0x6] Splunk on the road with Accenture, Swisscom, Cox, Atlanta Journal Constitution, Voxeo and Coleman Technologies

[0x7] Guess What Time It Is

[0x8] SCALE in Review

[0x9] Free as in Beer, Free Beer and a Discount Code for RSA

[0xA] Splunk at SCALE 8x in LA This Weekend

Latest News for All Threats

[0x1] International cyber crime group charged

[0x2] Four year jail sentence for webcam hacker

[0x3] Credit card fraudsters jailed in UK

[0x4] Estonia arrests first hacker over cyberattacks

[0x5] Russian news sites suffer DoS attacks

[0x6] Spammers sued for $1bn

[0x7] Hackers target official Estonian portals in conflict over Soviet-era monument

[0x8] "Bumbling" hacker speaks out at Infosec

[0x9] Changes to UK cybercrime legislation are in the air

[0xA] Report shows Britons up for online risks

Free and Useful Online Resources for Designers and Developers

Free and useful online resources for designer and developers

[0x1] 30+ Artistic Examples Of Colorful Wallpapers

[0x2] 25+ Beautiful And Creative Business Card Ideas

[0x3] SyncMate Is Giving Away 15 Single User Expert Edition Licenses

[0x4] Flickroom Makes It Easier To Browse Flickr On Your Desktop

[0x5] 29 Premium-Like Free But Extremely Tremendous Portfolio Wordpress Themes

[0x6] How To Organize Calendar, Tasks Manager, Address Book And Notes Modules The Easy Way

[0x7] Now Edit And Share From Anywhere With Photoshop For iPhone

[0x8] How to Get Free Content and Media Hosting at Screencast.com

[0x9] 5 Websites & Tools Bloggers Should Know About

[0xA] DotNetNuke Makes It Easier For You To Build Feature-Rich, Interactive Web Sites And Applications

Microsoft Security Content: Comprehensive Edition

Microsoft Security Content: Comprehensive Edition

[0x1] Microsoft Security Advisory (981374): Vulnerability in Internet Explorer Could Allow Remote Code Execution

[0x2] MS10-017 - Important: Vulnerabilities in Microsoft Office Excel Could Allow Remote Code Execution (980150) - Version:1.1

[0x3] Microsoft Security Bulletin Summary for March 2010

[0x4] MS10-016 - Important: Vulnerability in Windows Movie Maker Could Allow Remote Code Execution (975561) - Version:1.0

[0x5] Microsoft Security Bulletin Summary for July 2009

[0x6] MS09-033 - Important: Vulnerability in Virtual PC and Virtual Server Could Allow Elevation of Privilege (969856) - Version:2.0

[0x7] Microsoft Security Advisory (973811): Extended Protection for Authentication

[0x8] MS10-015 - Important: Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege (977165) - Version:1.2

[0x9] Microsoft Security Advisory (981169): Vulnerability in VBScript Could Allow Remote Code Execution

[0xA] MS09-060 - Critical: Vulnerabilities in Microsoft Active Template Library (ATL) ActiveX Controls for Microsoft Office Could Allow Remote Code Execution (973965) - Version:1.5

IBM Internet Security Systems Frequency X Blog

Frequency X, the blog site for IBM Internet Security Systems' world-renowned security research and development team, X-Force, provides an opportunity for the researchers to converse directly with the world about threats and vulnerability research.

[0x1]

Who?s the hardest working researcher of all time?  Of 2009?

[0x2] Creating News for Blackhat SEO

[0x3] Key Findings in the 2009 X-Force Trend and Risk Report

[0x4] Frequency X has been nominated for an award!

[0x5] Thanks for the malware sample!

[0x6] My Blackhat DC Paper, Slides, and Video are available

[0x7] The Google Attacks

[0x8] My talk at the upcoming Blackhat DC conference

[0x9] A New Years Resolution - Find out how your corporate domain name is managed.

[0xA] Reflecting on NTLM Reflection

National Vulnerability Database

This feed contains the most recent fully analyzed CVE cyber vulnerabilities published within the National Vulnerability Database.

[0x1] CVE-2010-0962 (airport_express, airport_extreme, time_capsule)

[0x2] CVE-2010-0961 (aix, vios)

[0x3] CVE-2010-0960 (aix, vios)

[0x4] CVE-2010-0959 (enovia_smarteam)

[0x5] CVE-2010-0806 (ie, windows_2003_server, windows_server_2003, windows_xp, windows_server_2008, wi...)

[0x6] CVE-2010-0447 (openview_performance_insight)

[0x7] CVE-2010-0265 (windows_movie_maker, windows_xp, windows_vista, producer)

[0x8] CVE-2010-0264 (excel, office, office_compatibility_pack, office_excel_viewer, office_sharepoint_...)

[0x9] CVE-2010-0263 (excel, office, office_compatibility_pack, office_excel_viewer, office_sharepoint_...)

[0xA] CVE-2010-0262 (excel, office, office_compatibility_pack, office_excel_viewer, office_sharepoint_...)

Moreover Technologies - Computer security news

Computer security news - more than 340 categories of real-time RSS news feeds

[0x1] Free Top Stock Picks Alerts - Sponsored Link

[0x2] Koobface worm infects social networking sites

[0x3] Ten things your VOIP firewall should do

[0x4] NPIA plans data sharing system

[0x5] Drudge Report, TechCrunch hit by ad malware

[0x6] RAPPORT DE LA MISSION CONJOINTE GOUVERNEMENT - PARTENAIRES POURLIDENTIFICATION DES ZONES A RISQUE, LE CIBLAGE ET LEVALUATION DES BESOINS DES POPULATIONS AFFECTEES PAR LA MAUVAISE CAMPAGNE AGRICOLE 2009/2010 - Draft

[0x7] IBM says less software security vulnerabilities found in 2009

[0x8] 10 things your VoIP firewall should do

[0x9] How to encrypt a folder in Windows XP Pro

[0xA] How to Remove File or Folder Encryption in Windows XP Pro

Foro de elhacker.net - Noticias

Información en vivo desde Foro de elhacker.net

[0x1] Los consumidores esperan que el Gobierno rectifique su plan de cerrar webs

[0x2] Hugo Chávez “regularᔠInternet

[0x3] Francia insta a los operadores a ofertar una tarifa social de ADSL que cueste...

[0x4] Jobs se parte de risa ante los premios “fiasco” españoles y vende 120000 iPad...

[0x5] Desarrollan un móvil 'espía' que permitiría a los directivos controlar a sus ...

[0x6] Ribbon Hero disponible para Office

[0x7] Un juez de Barcelona confirma la legalidad del P2P en España

[0x8] Cerca de 120 personas cumplen prisión en el mundo por publicar en Internet sus..

[0x9] iPhone 3G : 7.800 iphones bajo control en una red de smartphones zombis

[0xA] ¿Quién traduce mejor?

Lifehacker: hack attack

Lifehacker posts tagged hack attack

[0x1] Bypass Heavy-Handed Web Filters with Your Own Proxy Server [Hack Attack]

[0x2] Become a Gmail Master Redux [Hack Attack]

[0x3] How to Put Your PC to Good Use While You're Sleeping [Hack Attack]

[0x4] Build a Silent, Standalone XBMC Media Center On the Cheap [Winter Upgrades]

[0x5] Install Snow Leopard on Your Hackintosh PC, No Hacking Required [How To]

[0x6] How to Build a Hackintosh with Snow Leopard, Start to Finish [How To]

[0x7] Set Up "Push" Gmail on Your iPhone [Hack Attack]

[0x8] Carry Your PC on Your iPhone or iPod Touch [IPhone]

[0x9] Eight Best KeePass Plug-Ins to Master Your Passwords [Passwords]

[0xA] How to Set Up a Laptop Security System [Security]

Security Systems News Top Stories

Top stories from the security industry.

[0x1] Andrews gets more integrated, with D3

[0x2] Former Firstline CEO gets back into security, and more

[0x3] Edwards Service renamed Carter Brothers Fire & Life Safety

[0x4] Honeywell puts large parcel up for bid

[0x5] Residential video centerpiece of new Texana dealer program

[0x6] Habitec grows in Michigan with Citizen buy

[0x7] L1 for sale?

[0x8] Fire merger in Massachusetts

[0x9] City rolls false medical alert penalties into false alarm ordinance

[0xA] Pivot3 closes $25m in new funding

The Web Application Security Consortium

The Web Application Security Consortium (WASC) is an international group of experts, industry practitioners, and organizational representatives who produce open source and widely agreed upon best-practice security standards for the World Wide Web.

[0x1] Robert Auger edited Threat-Classification-Future

[0x2] Ryan Barnett edited Distributed Open Proxy Honeypots

[0x3] Ryan Barnett edited Distributed Open Proxy Honeypots

[0x4] Robert Auger edited Threat-Classification-Future

[0x5] Robert Auger edited Threat Classification References Mapping Proposal

[0x6] Robert Auger edited Using the Threat Classification

[0x7] Robert Auger edited SideBar

[0x8] Robert Auger edited SideBar

[0x9] Robert Auger edited Insufficient Data Protection

[0xA] Romain Gaucher edited Insufficient Data Protection

Unwired: Building & Maintaining Secure Wireless Networks

Journey into the latest in wireless technology! You'll find updates on new security issues and vulnerabilities, information on IEEE standards, advice on networking hardware, and unique insight on building and maintaining a secure wireless network.

[0x1] Quantum Cryptography

[0x2] In-Flight Wi-Fi

[0x3] Economic effects on IT Field

[0x4] Blackberry Storm Simulator

[0x5] 3G Wireless

[0x6] Wireless Network Users have Come a Long Way!

[0x7] Dilemma of a Passionate Programmer

[0x8] Can Old Wireless Network Interface Cards be Upgraded to Support WPA?

[0x9] Ramifications of a Cracked WPA Passphrase

[0xA] More Ramblings on WiFi Allergies

InfoSecPodcast.com » Security Tools

Information Security related news, opinions and ramblings

[0x1] MIT Lincoln Lab Network Security Software

[0x2] Record IM video on the network?

[0x3] RFP for PenTesting

[0x4] Declassified window film stops wireless / cell signals

[0x5] List of Malware Analysis tool from SANS

[0x6] Malware Analyzing Sandbox

[0x7] Free Windows Honeypot from NetVigilance

[0x8] Ajax based port scanner

[0x9] Web based VMX file creator

[0xA] Bootable Linux security distros

MySecured.com

Covering Mobile Phone Forensics, Information Security and Computer Security

[0x1] Push for cigarette-like warnings on mobiles in the USA

[0x2] Blackbox JTAG Reverse Engineering @ 26th Chaos Communication Congress

[0x3] Happy Holidays from MySecured.com

[0x4] Sexting and Mobile Phone Forensics

[0x5] NIST Releases a New Report within Mobile Forensic Reference Materials: A Methodology and Reification. NISTIR 7617.

[0x6] New NIST SIM Data Population Tool For Mobile Phone Forensics Uses

[0x7] Augmented Reality Projection Tracking System from Japan

[0x8] Android 2.0 Perview Video (On G1 from SDK)

[0x9] Wearable, Projector and Mobile Phone based Sixth Sense

[0xA] Real-Time Interactive Augmented Reality Billboard

blog ntic de revolunet

Blog des Nouvelles Technologies de l'Information et de la Communication

[0x1] Symbian : l’open source comme ultime recours ?

[0x2] Appels illimités vers le Maroc

[0x3] Astuces Django

[0x4] Bien démarrer avec django

[0x5] Premiers pas Git : team workflow

[0x6] Test du Sanyo Xacti CA9

[0x7] Outrage

[0x8] Test QNAP TS409 Pro

[0x9] rsync alternative for low cpus

[0xA] NeufBox = catastrophe

Linus' blog

Eventually this might even contain some Torvalds family pictures.

[0x1] Turst me, I know what I'm doing...

[0x2] Demons? Really?

[0x3] Happy camper

[0x4] Embroidery.. gaah

[0x5] Finnish culture...

[0x6] WTF?

[0x7] Programming

[0x8] Parenting gold star (?)

[0x9] Not-so-evil empire

[0xA] Pathetic

Threat Level

Privacy, Crime and Security Online

[0x1] FBI Hoaxes Boost Online Fraud

[0x2] NetFlix Cancels Recommendation Contest After Privacy Lawsuit

[0x3] China Warns Google Over Search Censorship

[0x4] TJX Hacking Conspirator Gets 4 Years

[0x5] Hate Blogger Wins Second Mistrial

[0x6] Pink Floyd Beats EMI in Creativity Flap

[0x7] Feds: TSA Worker Tried to Sabotage Terror Database

[0x8] Obama Supports DNA Sampling Upon Arrest

[0x9] Classmates.com’s Facebook Mimicking Prompts Privacy Suit

[0xA] European Parliament Rips Global IP Accord

LinuxSecurity.com: Mandriva Advisories

The central voice for Linux and Open Source security news.

[0x1] Study: Spammers use e-mail ID to gain legitimacy

[0x2] Review: Mod-Security 2.5 by Magnus Mischel

[0x3] Mandriva: 2010:061: ncpfs

[0x4] Mandriva: 2010:060: squid

[0x5] Mandriva: 2010:059: virtualbox

[0x6] Mandriva: 2010:058: php

[0x7] Mandriva: 2010:057: apache

[0x8] Mandriva: 2010:056: openoffice.org

[0x9] Mandriva: 2010:055: poppler

[0xA] Mandriva: 2010:054: pam_krb5

Black Hat Announcements

Black Hat Digital Self Defense. Black Hat provides cutting edge content in the information and computer security field. Keep up to date with Black Hat presentations, announcements, and free content.

[0x1] Black Hat USA 2010 Training: Pentesting with Backtrack by Offensive Security

[0x2] Black Hat USA 2010 Training: Application Security: For Hackers and Developers

[0x3] Black Hat USA 2010 Training: Assaulting IPS

[0x4] Free Black Hat March Webcast - Pen Testing the Web with Firefox by Michael Schearer ("theprez98")

[0x5] Black Hat USA 2010 Registration Now Open!

[0x6] Black Hat USA 2010 Call for Papers Closes May 1

[0x7] Black Hat Europe 2010 Call for Papers Closes March 1

[0x8] Feb 18 Webcast

[0x9] Black Hat DC 2010 - News - Security chip that does encryption in PCs hacked

[0xA] Black Hat DC Keynote

XSSed syndication

You are welcome to syndicate and share xssed.com contents

[0x1] Diigo Toolbar - Global XSS and Information Leakage in SSL URLs

[0x2] Dot Net Nuke (DNN) XSS Vulnerability

[0x3] Sun Java Server Faces Input Handling Cross-Site Scripting

[0x4] ManageEngine ServiceDesk Plus Cross-Site Scripting Vulnerability

[0x5] Savvy Content Manager "searchterms" Cross-Site Scripting

[0x6] Alkacon OpenCms "filePath" Cross-Site Scripting and File Disclosure

[0x7] IBM Lotus QuickPlace Cross-Site Scripting Vulnerability

[0x8] BosClassifieds Classified Ads System "returnTo" Cross-Site Scripting

[0x9] Zimbra Collaboration Suite Script Insertion Vulnerability

[0xA] WebCT Mail/Discussion Board Message Script Insertion

Deb Shinder's Blog

Deb Shinder is MS SECURITY. An Enterprise Security MVP, she has the “inside story” on all topics related to securing Microsoft networks, from the server all the way down to the network-connected smart phone. Her blog will address Microsoft’s security products and technologies including those built into the operating system (access controls and permissions, EFS, BitLocker, etc.), network security technologies (Active Directory, IPsec, DirectAccess, etc.) and separate security products (ISA Server/TMG, IAG, ILM and the Forefront family of client and server security products and services). This blog focuses on how network administrators and network security specialists can create a multi-layered security strategy, develop sound security policies, and build a strong line of defense around the network to prevent both internal and external attack.

[0x1] Twitter takes steps to stop malware links

[0x2] 60+ Sites recently compromised by SEO poisoning

[0x3] Battery charger can infect computers with a Trojan

[0x4] Should software vendors be held liable for vulnerabilities that lead to security breaches?

[0x5] NSS Labs: IE 8 beats other browsers at stopping social attacks

[0x6] VBS vulnerability in Internet Explorer on Windows 2000/XP/Server 2003

[0x7] Fake Amazon order confirmations contain link to malware

[0x8] Microsoft vs. the Botnet

[0x9] Reputation filtering can boomerang on you when doing penetration testing

[0xA] U.S. Cybersecurity law will require licensing of (some) IT security professionals

Dr.Dobb's Security Articles

[0x1] Real-time Steganography Analyzer Upgraded

[0x2] Cloud-Free Security Model

[0x3] Natural Computing

[0x4] CyLab Security and Mobility Briefing

[0x5] Nose Scanning Biometric Software

[0x6] IBM Launches 'Institute for Advanced Security'

[0x7] Intruders Automating Threats

[0x8] Truly Random Numbers

[0x9] Encryption Pioneers Win Hamming Medal

[0xA] Containing Stealthy Worms

SecDocs Feed

Latest security documents RSS feed

[0x1] [Audio] Breaking the "Unbreakable" Oracle with Metasploit

[0x2] [Slides] Breaking the "Unbreakable" Oracle with Metasploit

[0x3] [Paper] Breaking the "Unbreakable" Oracle with Metasploit

[0x4] [Video] Breaking the "Unbreakable" Oracle with Metasploit

[0x5] [Paper] Router Exploitation

[0x6] [Video] Router Exploitation

[0x7] [Audio] Router Exploitation

[0x8] [Slides] Hacking the Smart Grid

[0x9] [Paper] Hacking the Smart Grid

[0xA] [Audio] Hacking the Smart Grid

LinuxSecurity.com: EnGarde_Secure_Linux Advisories

The central voice for Linux and Open Source security news.

[0x1] Study: Spammers use e-mail ID to gain legitimacy

[0x2] Review: Mod-Security 2.5 by Magnus Mischel

[0x3] EnGarde Secure Community Release Notes 3.0.10

[0x4] EnGarde Secure Community 3.0.8 Release Notes

[0x5] EnGarde Secure Community 3.0.7 Release Notes

[0x6] EnGarde Secure Community 3.0.6 Release Notes

[0x7] EnGarde Secure Community 3.0.5 Release Notes

[0x8] EnGarde Secure Community 3.0.4 Release Notes

[0x9] EnGarde Secure Community 3.0.3 Release Notes

[0xA] EnGarde Secure Community 3.0.2 Release Notes

Martin McKeay's blog

[0x1] Hacking locks instead of computers

[0x2] Did she think this of the potential consequences?

[0x3] Escaping a virtual machine

[0x4] Certs: Added value or minimum requirement?

[0x5] The dubious effects of monitoring surfing habits

[0x6] Should your ISP protect you from yourself?

[0x7] Was the iPhone ready for prime time?

[0x8] Maynor isn't the Sell Out or LMH

[0x9] Infosec Sell Out outed, disappears

[0xA] VA employee tried to hide the damage

NovaInfosecPortal.com

News, events, & resources for infosec professionals in NoVA, DC, & MD

[0x1] Grecs’ Weekly Infosec Ramblings for 2010-03-11

[0x2] Top 3 NoVA Infosec Blog Posts of the Week

[0x3] GovSec Conference Free Pass Raffle

[0x4] NoVA Hackers Dinner Wrap-Up

[0x5] Where You Want to Be This Week for 2010-03-08

[0x6] Top 3 NoVA Infosec Blog Posts of the Week

[0x7] Grecs’ Weekly Infosec Ramblings for 2010-03-04

[0x8] RSA 2010 Coverage

[0x9] Where You Want to Be This Week for 2010-03-01

[0xA] Top 3 NoVA Infosec Blog Posts of the Week

Will Hack For SUSHI

Hacking and Defending Wireless

[0x1] MiFi Config Hack

[0x2] Verizon MiFi Pwned (maybe they should take my class)

[0x3] Wordlist Generation – CeWL on Ubuntu

[0x4] QuahogCon: We should have a raw bar.

[0x5] Exploiting ZigBee at ToorCon 11 Slides

[0x6] ToorCon 11: KillerBee – Practical Zigbee Exploitation Framework

[0x7] Bluetooth and OS Language Pack Correlation

[0x8] Special Evening Webcast on Kismet Newcore Thursday!

[0x9] Wired: 100 Things Your Kids May Never Know About

[0xA] Webcast Tomorrow: Smart Grid and AMI Security Concerns

LinuxSecurity.com

The central voice for Linux and Open Source security news.

[0x1] Apache bug prompts update advice

[0x2] Virtualization Security Is Taking Longer Than Expected

[0x3] MD5 hash vulnerability is expert's top Web security flaw

[0x4] Seven Firefox Plug-ins That Improve Online Privacy

[0x5] Security industry faces attacks it cannot stop

[0x6] Noted cryptographer on SSL, encryption and cloud computing

[0x7] Debian: 2016-1: drupal6: Multiple vulnerabilities

[0x8] Debian: 2014-1: moin: Multiple vulnerabilities

[0x9] Debian: 2013-1: egroupware: Multiple vulnerabilities

[0xA] Mandriva: 2010:061: ncpfs

GeekDad

Parents, Kids and the Stuff We Obsess About

[0x1] GelaSkins: A Protective Ironic Tee For Your iPod

[0x2] GeekDad Puzzle O’The Week: On The Rocky Road To Dublin

[0x3] GeekDad Puzzle Of The Week Solution: Riddles and Ciphers and Jumbles OH MY !

[0x4] Happy Pi Day!

[0x5] 10 Annoying Habits of a Geeky Spouse (GeekDad Wayback Machine)

[0x6] Announcing The First Annual GeekDad Awards — Vote Now!

[0x7] Light Cycle-Jumping A 28-Year Gap

[0x8] Pandora Delivers Internet Radio for Kids

[0x9] Dork Tower Friday

[0xA] Great Geek Debates: Plants vs. Zombies

Observations from a Tech Architect: Enterprise Implementation Issues & Solutions

Enterprise Technology Architect Craig Borysowich shares the challenges and achievements of enterprise solution design and implementation.

[0x1] Activity: Designing Contact Processes

[0x2] Activity: Developing Implementation Plans

[0x3] Activity: Prototyping the Customer Care Solution

[0x4] Activity: Defining Customer Care Solution Requirements

[0x5] Activity: Defining Service Models

[0x6] Presenting the Customer Care Implementation Plan

[0x7] Selecting a Customer Care Solution Package

[0x8] Sample ‘Supplement Payment Admin & Mgmt System’ Test Plan

[0x9] Sample Design & Development Standards for Visual Basic.

[0xA] Sample Design & Development Standards for PowerBuilder

Hackers Center Blogs

[0x1] Data Related to Kneber Botnet breach recovered by Netwitness

[0x2] Building security into business processes

[0x3] Spy Eye tool kit goes after Zeus botnet

[0x4] Black Hat: Researcher claims hack of chip used to secure computers, smartcards

[0x5] China steals Google's data

[0x6] PortSwigger.net - web application security

[0x7] eLearnSecurity : Breaking into system is no more enough

[0x8] NIST releases Security Content Automation Protocol for FISMA

[0x9] A zero-day flaw in the TLS and SSL protocols, which are commonly used to encrypt web pages, has been made public.

[0xA] Use Data Masking to Secure Sensitive Data in Non-Production Environments

CSOONLINE.com - Network Security

[0x1] Data Exfiltration: How Data Gets Out

[0x2] Seven Firefox Plug-ins That Improve Online Privacy

[0x3] What Are the Most Overrated Security Technologies?

[0x4] Fraudsters Bank on Business Accounts: How to Protect Your Funds Online

[0x5] Security B-Sides: Perfect Authentication Remains Elusive

[0x6] RSA Conference 2010: 4 Survival Tips

[0x7] Security B-Sides: Rise of the 'Anti-conference'

[0x8] Virtualization, Cloud Computing and the PCI DSS

[0x9] Five Security Missteps Made in the Name of Compliance

[0xA] Virtualised USB Key Beats Keyloggers

Unpersons

You are not alone...

[0x1] Episode 032

[0x2] Episode 031

[0x3] We’re not Dead Yet!

[0x4] Episode 030

[0x5] Episode 029

[0x6] Episode 028

[0x7] Episode 027

[0x8] Episodes 27 28 and 29

[0x9] Holy DEFCON, Batman!

[0xA] Holla!

Tech Digest

Gadgets, mobile phones, news and reviews

[0x1] Samsung developing smartphone with 3D display?

[0x2] TomTom iPhone app gets live traffic updates

[0x3] Apple shift over 120,000 iPad pre-orders on day one

[0x4] Sony S-Series Walkmans to get limited edition Disney branding

[0x5] Two thirds consider Google Street View an intrusion of privacy

[0x6] Currys and Harrods begin taking 3D TV pre-orders for UK customers

[0x7] iPad now available to pre-order and reserve from the US Apple Store

[0x8] ITV HD headed to Sky+ HD and Virgin Media services in time for the World Cup

[0x9] US Apple store down - iPad pre-orders imminent

[0xA] Kings of Leon added to Tap Tap Revenge iPhone app roster

Jeff Jones Security Blog

Looking at Security from All Angles. Security is not simple, so we should try not to simplify it to the point of uselessness.

[0x1] Ubuntu CVE Tracker

[0x2] Microsoft Prime Restaurant Guide for Snoqualmie and Issaquah

[0x3] Microsoft News at RSA 2010

[0x4] My Netflix Pet Peeve - "Popular New Releases"

[0x5] Microsoft to Waledac: Off with Your Head!

[0x6] Now on Twitter –Jeff Jones @ Microsoft is securityjones

[0x7] End of Year – Clean Up Your E-Mail

[0x8] Expanding SDL for Cloud and Agile Development

[0x9] SDL Team Adds Test Tools to the SDL Tools Arsenel

[0xA] Project Quant Patch Management Survey Summary and Results – Available for Download

CERIAS Blog

[0x1] Making the CWE Top 25, 2010 Edition

[0x2] Cowed Through DNS

[0x3] Blast from the Past

[0x4] Drone “Flaw” Known Since 1990s Was a Vulnerability

[0x5] An old canard reappears (sort of)

[0x6] Talking to the Police All the Time

[0x7] “Verified by VISA”: Still Using SSNs Online, Dropped by PEFCU

[0x8] Firefox Vulnerabilities: Souvenirs of Windows 95

[0x9] Are We All Aware Yet?

[0xA] Cassandra Firing GnuPG Blanks

StatCounter Blog

[0x1] StatCounter – SC4 Conversion

[0x2] No Referring Link – Explained

[0x3] Season’s Greetings

[0x4] Unique Visitors – YOUR Questions Answered

[0x5] Unique Visitors – Explained

[0x6] General News

[0x7] Attack of Nasty Ads!

[0x8] StatCounter User Types

[0x9] NEW: Restricted Public Stats

[0xA] Bing Overtakes Yahoo!

Wired: Politics

The intersection of technology and government.

[0x1] FBI Hoaxes Boost Online Fraud

[0x2] China Warns Google Over Search Censorship

[0x3] TJX Hacking Conspirator Gets 4 Years

[0x4] Hate Blogger Wins Second Mistrial

[0x5] Super Stealth Plane Breaks Through Cost Barrier

[0x6] FCC Wants You to Test Your Broadband Speeds

[0x7] Feds: TSA Worker Tried to Sabotage Terror Database

[0x8] Acorn Filmmaker's Fresh Tapes: Inside HUD

[0x9] How Andrew Breitbart Hacks the Media

[0xA] Minister of Truth: Meet Britain's Top Data Cop

Evilcodecave's Weblog

Just another RCE Weblog

[0x1] Fast Overview of SpyEye

[0x2] Rootkit Agent.adah Anatomy and Executables Carving via Cryptoanalytical Approach

[0x3] PHP/Spy.Bull Cryptanalysis of Encryption used and Threat Analysis

[0x4] Siberia ExploitPack and PDF Exploit Analysis

[0x5] DNAScan Malicious Network Activity Reverse Engineering

[0x6] Avast aswRdr.sys Kernel Pool Corruption and Local Privilege Escalation

[0x7] PHPSpyScanBot Analysis

[0x8] [Crimeware] Researches Reversing about Eleonore Exploit Pack

[0x9] [Crimeware] Researches and Reversing about Eleonore Exploit Pack

[0xA] [Malware] BDS/PHP.Agent.DW.8 Dissection

Aladdin Knowledge Systems Latest HASP Press Releases

Aladdin Knowledge Systems Latest HASP Press Releases - RSS Feed

[0x1] China's Largest CAD/CAM Software Developer Selects Aladdin HASP SRM

[0x2] HASP SRM v 3.60 Provides Automatic File Wrapping for Windows x64 Applications

[0x3] Leading Network Engineering Firm in China Selects Aladdin HASP SRM to Stop Software Piracy

[0x4] Aladdin Announces Enhanced HASP SRM Anti-Piracy Tool for Mac Software Developers

[0x5] Aladdin HASP SRM Adds Automatic File Wrapping to Secure Intellectual Property in Java-Based Applications

[0x6] Aladdin HASP SRM Adds Linux Support

[0x7] Iris Biometrics Leader Secures Software with Aladdin HASP SRM

[0x8] Aladdin HASP SRM Wins Codie Award for Best Digital Rights Management Solution

[0x9] Aladdin Announces First Runtime Installer Certified for Windows Vista

[0xA] Aladdin HASP SRM Receives CompTIA SoftwareCEO Innovation Award

CSOONLINE.com - Investigations/Forensics

[0x1] Reports: Internet Attacks Traced to Chinese Schools

[0x2] How to Visualize Investigations

[0x3] Internal Investigations: The Basics

[0x4] How to Protect Your Privacy from Computer Forensics

[0x5] The Digital Trail of the Maltese Falcon: Private Investigations in the Information Age

[0x6] 4 Cheap Options to Monitor Networks for Evidence

[0x7] Family Matters: A Mafia Quiz

[0x8] How to Build Your Own Digital Forensics Lab - for Cheap

[0x9] Tools To Identify Anonymous Users Online

[0xA] An Investigator's Toolkit: 5 Free Tools to Send Anonymous Messages

MITRE Career News

The MITRE Career News feed offers stories about working at MITRE, from our popular Employee Spotlight features, to useful information about upcoming recruiting events and more.

[0x1] Helping to See the Big Picture

[0x2] Invitational Career Event Announced for MITRE's Ft. Meade Location in March

[0x3] Collaboration Helps Sponsors Address Data Security Challenges

[0x4] Fast Company Names MITRE One of the "World's 50 Most Innovative Companies"

[0x5] Contributions to NextGen

[0x6] MITRE Named One of FORTUNE's "100 Best Companies to Work For" Nine Years in a Row

[0x7] ISR Forensics in the Lab and in the Field

[0x8] Pursuing Information Security Opportunities at Fort Meade

[0x9] First–Rate Career, Second Time Around for Working Mom

[0xA] Modeling a "Green" Effort

SOURCE Conference Blog

SOURCE Boston 2009: March 11th-13th

[0x1] RIP SecurityFocus

[0x2] Des malwares dans nos devices…

[0x3] A day of IDS (Snort) event data

[0x4] SOI URL’s added

[0x5] URls.jpg

[0x6] Nouveautés dans les attaques sur TKIP

[0x7] De l’équivalence 24×36…

[0x8] RSA Security Conference – Cloud the Logging Killer App?

[0x9] Veracode at RSA 2010

[0xA] Visualisation hardware & software

Subreption Blog

A surreptitious look over the work of an innovative startup.

[0x1] Why Linux security has failed (for the past 10 years)

[0x2] KERNHEAP for the Linux kernel 2.6 released

[0x3] Runtime binary loading via the dynamic loader on Apple Mac OS X

[0x4] Minor security fixes for Pyblosxom

[0x5] Apple Mac OS X 10.4 temp_patch_ptrace(): Nonsense in kernel-land

[0x6] Linux Kernel Silent Patching: VMI write_ldt_entry() privilege escalation

[0x7] Custom shellcode and return-to-libc on Mac OS X

[0x8] Marshal and Native API bridging on Microsoft Windows (NT)

[0x9] Pyblosxom and mod_wsgi benchmark

[0xA] PatchDiff 2 by Tenable Security

Techworld.com Security

Latest IT articles from Techworld's Security channel

[0x1] Internet fraud losses doubled in 2009

[0x2] IBM says less software security vulnerabilities found in 2009

[0x3] PayPal users close accounts after Cryptome attack

[0x4] Zeus botnet malware is improving for hackers

[0x5] Fake antivirus software is most costly security scam of 2010

[0x6] Adobe Reader most attacked application, says F-Secure

[0x7] ISPs takedown Zeus botnet, but hackers reconnect

[0x8] Celebrities cause Twitter crime wave

[0x9] Celebrities caused 2009 Twitter crime wave

[0xA] Twitter to screen links for phishing scams

OSF Data Loss - Latest Incidents

This feed contains the latest incidents approved for inclusion in OSF Data Loss.

[0x1] Hospital loses confidential medical records for 2000 patients

[0x2] Names, addresses and Social Security numbers of 24 may have been exposed by malware

[0x3] Stolen laptop exposes clients names, addresses, Social Security numbers, and health information

[0x4] Hotel systems may have been hacked, disclosing credit and debit card numbers

[0x5] 12,000 patients exposed after a former employee was found in possession of a limited amount of patient billing data

[0x6] Customers full name, address, credit card number, three-digit CCV security code exposed in order confirmation emails

[0x7] Stolen laptop exposes employees names, addresses, including some Social Security numbers, credit card numbers, codes and expiration dates

[0x8] UWMC patient financial information compromised

[0x9] Names, addresses, medical information and some Social Security numbers of 12,500 on stolen laptop

[0xA] Hackers steal guest names, credit card numbers, expiration dates and other data from cards' magnetic stripe

Danger Room

What's Next in National Security

[0x1] Stopping Afghanistan’s Fertilizer Bomb Factories

[0x2] How It Works: The Hurt Locker’s Bomb-Fighting Suit

[0x3] Darpa Looks to Tap Nature’s Quantum Effects

[0x4] Super Stealth Plane Breaks Through Cost Barrier

[0x5] Let Troops Get Their Drink On, Senator Says

[0x6] Acorn Filmmaker’s Fresh Tapes: Inside HUD

[0x7] Behind the Fence at Britain’s Atomic Bomb Factory

[0x8] Mach 6 Cruise Missile, Ready for Prime Time?

[0x9] ‘500 AK-47s, Please’: Art Imitates Blackwater (Updated)

[0xA] Tanker Manufacturers to Air Force: Later, Haters

Andy ITGuy - Information Security Blog

The voice of reason in a world of FUD

[0x1] Episode 9 of the Southern Fried Security Podcast is out

[0x2] Episode 8 of The Southern Fried Security Podcast is out

[0x3] March Atlanta NAISG Meeting

[0x4] Data protection extends beyond electronic data

[0x5] Funny Spam Messages

[0x6] Is exploit necessary?

[0x7] The negative power of Social Networking

[0x8] Adding some Bite to your Bark

[0x9] So who really is responsible

[0xA] Are we being irresponsible?

F.A.T.

Release early, often, and w/ rap music.

[0x1] Paintball Shooting Robot Writes Tempt1 Tag

[0x2] BREAKING NEWS: EyeWriter wins Design of the Year in Art

[0x3] How to Build an EyeWriter in Mumbai Part I

[0x4] 2009: Year of the F.A.T.

[0x5] How to Tweet Porn

[0x6] How to build a fake Google Street View car

[0x7] How To Track the Google Street View Car

[0x8] Drunk Google Street View!

[0x9] Google Streeview Driver Caught Urinating In Public…

[0xA] Imma Let You Finish Transmediale…

Betanews

Technology News and IT Business Intelligence

[0x1] Apple's HTC patent lawsuit is a bluff

[0x2] Bing gains show why Microsoft-Yahoo search deal is a dumb idea

[0x3] Italy launches a beta of Microsoft Tags for tourism

[0x4] Again, it's over: Microsoft loses second review of Word appeal

[0x5] In a more complicated gaming world, OpenGL 4.0 gets simpler, smarter

[0x6] Android vs. iPhone vs. BlackBerry vs. OS X vs. Windows, brought to you by Namco

[0x7] FCC releases iPhone app to learn more about network conditions

[0x8] Early praise for Google Maps' bike routes

[0x9] Opera Mini 5 solves some of Android's native browser problems

[0xA] Second thoughts about Google Buzz

US-CERT Technical Cyber Security Alerts

US-CERT Technical Cyber Security Alerts provide timely information about current security issues, vulnerabilities, and exploits.

[0x1] TA10-068A: Microsoft Updates for Multiple Vulnerabilities

[0x2] TA10-055A: Malicious Activity Associated with "Aurora" Internet Explorer Exploit

[0x3] TA10-040A: Microsoft Updates for Multiple Vulnerabilities

[0x4] TA10-021A: Microsoft Internet Explorer Vulnerabilities

[0x5] TA10-013A: Adobe Reader and Acrobat Vulnerabilities

[0x6] TA10-012B: Microsoft Windows EOT Font and Adobe Flash Player 6 Vulnerabilities

[0x7] TA10-012A: Oracle Updates for Multiple Vulnerabilities

[0x8] TA09-343A: Adobe Flash Vulnerabilities Affect Flash Player and Adobe AIR

[0x9] TA09-342A: Microsoft Updates for Multiple Vulnerabilities

[0xA] TA09-314A: Microsoft Updates for Multiple Vulnerabilities

Security Watch

Security Watch is a resource center for everything related to tech security: the latest news, review summaries and advice on security-related topics. We show you how you can protect your online identity and keep your computer safe.

[0x1] Microsoft Releases Workaround for IE 0Day

[0x2] Apple Updates Safari to Fix 16 Vulnerabilities

[0x3] Zeus Botnet Takes a Hit

[0x4] LimeWire Adds AVG Malware Scanning To Pro Service

[0x5] PayPal Recommends Iconix Email Authentication System

[0x6] Government Bombarded With Cyber Attacks

[0x7] Vodafone Distributes Malware on HTC Magic Mobile

[0x8] IE Zero Day Attacks Expose IE6, IE7 Users

[0x9] Patch Day Light Yields 2 Updates From Microsoft

[0xA] FTC Warns Companies of Breached Data on P2P Nets

milw0rm.com

milw0rm.com's latest exploit rss feed

[0x1] BigAnt Server <= 2.50 SP6 Local (ZIP File) Buffer Overflow PoC #2

[0x2] Joomla com_mytube (user_id) Blind SQL Injection Exploit

[0x3] Joomla com_jinc (newsid) Blind SQL Injection Vulnerability

[0x4] Snort < 2.8.5 Unified1 Output Denial of Service Exploit

[0x5] WX Guest Book 1.1.208 (SQL/XSS) Multiple Remote Vulnerabilities

[0x6] Loggix Project <= 9.4.5 Multiple Remote File Inclusion Vulnerabilities

[0x7] ProdLer <= 2.0 (prodler.class.php sPath) RFI Vulnerability

[0x8] CMScontrol 7.x (index.php id_menu) SQL Injection Vulnerability

[0x9] cP Creator 2.7.1 (Cookie tickets) Remote SQL Injection Exploit

[0xA] Winplot (.wp2 File) Local Buffer Overflow Exploit

Hackyourself.net Information Security Blog

Hack Yourself...before someone else does!

[0x1] Where are the DBAs?

[0x2] Some Free Web App Security Testing Tools & Resources

[0x3] CWE Top 25 Breakdown – Part 3 of 4

[0x4] CWE Top 25 Breakdown – Part 2 of 4

[0x5] CWE Top 25 Breakdown – Part 1 of 4

[0x6] Should I be worried about my web applications?

[0x7] Does PCI Compliance Work?

[0x8] Top 10 Issues Observed During Pen Tests in 2008

[0x9] A PHP Framework Worth Looking Into

[0xA] OSI is Dead

OSVDB Blog :

Everything Is Vulnerable

[0x1] iDefense VCP as seen through OSVDB

[0x2] February Update: OSVDB Winter 2010 Fundraising Goal

[0x3] Time to.. Track More Data

[0x4] Open Security Foundation - Advisory Board - Call for Nominations

[0x5] Open Security Foundation - State of the Union 2010

[0x6] January Update: OSVDB Winter 2010 Fundraising Goal

[0x7] Microsoft, Aurora and something about forest and trees?

[0x8] Challenge: OSVDB Winter 2010 Fundraising Goal

[0x9] Adobe, Qualys, CVE and Math

[0xA] OSVDB 2009 Q4 Changelog

SANS Information Security Reading Room

Last 25 Computer Security Papers added to the Reading Room

[0x1] SANS 2009

[0x2] Effective Use Case Modeling for Security Information & Event Management

[0x3] Penetration Testing in the Financial Services Industry

[0x4] Identifying Load Balancers in Penetration Testing

[0x5] IT Guidance to the Legal Team

[0x6] Building Servers as Appliances for Improved Security

[0x7] One Admin�s Documentation is their Hacker�s Pentest

[0x8] Meeting Compliance Efforts with the Mother of All Control Lists (MOACL)

[0x9] Comprehensive Blended Malware Threat Dissection Analyze Fake Anti-Virus Software and PDF Payloads

[0xA] Incident Handling as a Service

Uninformed Journal

Informative information for the uninformed

[0x1] Using dual-mappings to evade automated unpackers

[0x2] Analyzing local privilege escalations in win32k

[0x3] Exploiting Tomorrow's Internet Today: Penetration testing with IPv6

[0x4] Can you find me now? Unlocking the Verizon Wireless xv6800 (HTC Titan) GPS

[0x5] An Objective Analysis of the Lockdown Protection System for Battle.net

[0x6] ActiveX - Active Exploitation

[0x7] Context-keyed Payload Encoding

[0x8] Improving Software Security Analysis using Exploitation Properties

[0x9] Real-time Steganography with RTP

[0xA] PatchGuard Reloaded: A Brief Analysis of PatchGuard Version 3

milw0rm.com

milw0rm.com's latest exploit rss feed

[0x1] BigAnt Server <= 2.50 SP6 Local (ZIP File) Buffer Overflow PoC #2

[0x2] Joomla com_mytube (user_id) Blind SQL Injection Exploit

[0x3] Joomla com_jinc (newsid) Blind SQL Injection Vulnerability

[0x4] Snort < 2.8.5 Unified1 Output Denial of Service Exploit

[0x5] WX Guest Book 1.1.208 (SQL/XSS) Multiple Remote Vulnerabilities

[0x6] Loggix Project <= 9.4.5 Multiple Remote File Inclusion Vulnerabilities

[0x7] ProdLer <= 2.0 (prodler.class.php sPath) RFI Vulnerability

[0x8] CMScontrol 7.x (index.php id_menu) SQL Injection Vulnerability

[0x9] cP Creator 2.7.1 (Cookie tickets) Remote SQL Injection Exploit

[0xA] Winplot (.wp2 File) Local Buffer Overflow Exploit

leetupload.com

NewsFeed for leetupload.com

[0x1] New Tutorial - How the Microprocessor Works

[0x2] Famous - Copper Heatsink/Wine Chiller Idea on engadget and Hack a Day!

[0x3] Copper Heatsink on the Rocks Mod Finished

[0x4] Another Tutorial - Technical Practical Jokes

[0x5] New Tutorial - Campus WarWalking

[0x6] IRC Up For Use, and IRC Java Client is Here to Stay!

[0x7] VIRII AND EXPLOIT DATABASE IS UP!

[0x8] Updates

[0x9] Mineral Oil PC, Woot!

[0xA] Signing up for the Virii DB = Great Success, Very Nice!

US-CERT Technical Cyber Security Alerts

US-CERT Technical Cyber Security Alerts provide timely information about current security issues, vulnerabilities, and exploits.

[0x1] TA10-068A: Microsoft Updates for Multiple Vulnerabilities

[0x2] TA10-055A: Malicious Activity Associated with "Aurora" Internet Explorer Exploit

[0x3] TA10-040A: Microsoft Updates for Multiple Vulnerabilities

[0x4] TA10-021A: Microsoft Internet Explorer Vulnerabilities

[0x5] TA10-013A: Adobe Reader and Acrobat Vulnerabilities

[0x6] TA10-012B: Microsoft Windows EOT Font and Adobe Flash Player 6 Vulnerabilities

[0x7] TA10-012A: Oracle Updates for Multiple Vulnerabilities

[0x8] TA09-343A: Adobe Flash Vulnerabilities Affect Flash Player and Adobe AIR

[0x9] TA09-342A: Microsoft Updates for Multiple Vulnerabilities

[0xA] TA09-314A: Microsoft Updates for Multiple Vulnerabilities

Daily Dave

This technical discussion list covers vulnerability research, exploit development, and security events/gossip. It was started by ImmunitySec founder Dave Aitel and many security luminaries participate. Many posts simply advertise Immunity products, but you can't really fault Dave for being self-promotional on a list named DailyDave.

[0x1] Wings

[0x2] Re: Mike Bailey's Flash presentation is good.

[0x3] Mike Bailey's Flash presentation is good.

[0x4] Re: Does anyone have video of this?

[0x5] Perforce

[0x6] Re: Does anyone have video of this?

[0x7] Does anyone have video of this?

[0x8] FIRST 2010!

[0x9] Month of PHP Security 2010 - CALL FOR PAPERS

[0xA] dnsmap v0.30 + embedded devices discovery trick

Cryptography Blog

Cryptography Blog

[0x1] DNA cryptography?

[0x2] Self-Encrypting Hard Drives

[0x3] Diebold Audit Logs

[0x4] Black Hat DC 2009 and Research

[0x5] Data Theft and Loss - It's Inevitable So Just Be Prepared

[0x6] Electronical Health Records - Law and Technology

[0x7] SSL is not broken; MD5 is and has been for a long time

[0x8] A Basic Tip Regarding Wireless Security

[0x9] The Big Business of Computer Crime

[0xA] The Transparent Society Begins

Emerging Threats

Emerging Threats - Signatures for All!

[0x1] OISF Suricata Development Meeting Update

[0x2] Bothunter 1.5 Released!

[0x3] Suricata New Features Series: Flowint

[0x4] OISF Releases Suricata Engine!

[0x5] OISF Suricata Release Tomorrow!

[0x6] ET Welcomes Infotex as a Sponsor

[0x7] Mugs are Available!!

[0x8] Don't Subscribe using Yahoo Email

[0x9] ET in the Press

[0xA] ET Lanyards are in!

CSOONLINE.com - Audit

[0x1] RSA 2010: Why 41 Percent of You Would Fail a PCI Audit

[0x2] Five Security Missteps Made in the Name of Compliance

[0x3] Report: Layer 7 Increasingly Under DDoS Gun

[0x4] Internal Investigations: The Basics

[0x5] The Great PCI Security Debate of 2010: Transcribed

[0x6] PCI DSS, Come Forward and Be Judged

[0x7] Compliance as Security: The Root of Insanity

[0x8] The Mass. 201 CMR 17 Survival Guide

[0x9] The Patch Tuesday Survival Guide

[0xA] Why Pen Testing Is Central to Pennsylvania's App Security

Virtual Shadows

the privacy blog!

[0x1] Priorities when it comes to data privacy

[0x2] Google’s real-search algorithm

[0x3] digital immortality ;-)

[0x4] Controlscan tarnishes integrity on the use of privacy seals

[0x5] Beware of school authorities bearing gifts ;-)

[0x6] Vikings on ice

[0x7] Don’t toot your horn!

[0x8] Get your Google ranking

[0x9] Power to the people of Skåne!

[0xA] Virtual RIP

Upcoming Security Alerts

Upcoming Security Alerts

[0x1] Oracle Database

[0x2] Oracle Database

[0x3] Oracle Database

[0x4] Oracle Secure Enterprise Search

[0x5] Documentation bug concerning a special privilege

[0x6] Oracle Database

[0x7] Oracle Database

[0x8] Oracle Database

[0x9] Oracle Database

[0xA] Oracle Database

Kaspersky.com / All News

[0x1] Kaspersky Internet Security 2010 beats the competition in comparative testing by popular Polish IT magazine PC Format

[0x2] Kaspersky Lab Discovers Koobface Worm Doubles its Number of Command and Control Servers in 48 Hours

[0x3] Kaspersky Lab Discovers Koobface Worm Doubles its Number of Command and Control Servers in 48 Hours

[0x4] Kaspersky PURE Provides Ultimate Home-Wide Protection Against Digital Pollution

[0x5] Gumblar Strikes Again To Dominate The Online Threat Landscape Throughout February

[0x6] Kaspersky Lab announces the structural reorganization of EEMEA Geographic Division

[0x7] Beware the Internet: Monthly Malware Statistics for February 2010

[0x8] Kaspersky Lab Recommends 'Patching Human Vulnerabilities' On A Regular Basis To Protect Corporate IT Systems

[0x9] Kaspersky Lab announces the result of judicial proceedings with its distribution partner for the Benelux countries

[0xA] Kaspersky Lab recommends 'Patching human vulnerabilities' on a regular basis

Rational Survivability

Hoff's Ramblings about Information Survivability, Information Centricity, Risk Management and Disruptive Innovation. Oh, I have a fondness for virtualization and cloud computing security, too...

[0x1] Video: Cloud Computing in Government…

[0x2] Incomplete Thought: The Other Side Of Cloud – Where The (Wild) Infrastructure Things Are…

[0x3] Chattin’ With the Boss: “Securing the Network” (Waiting For the Jet Pack)

[0x4] 2010 RSA Security Bloggers Award – Thanks A Bunch…

[0x5] RSA Interview (c/o Tripwire) On the State Of Information Security In Virtualized/Cloud Environments.

[0x6] Slides from My Cloud Security Alliance Keynote: The Cloud Magic 8 Ball (Future Of Cloud)

[0x7] Virtual Networking/Nexus 1000v Virtual Switch Blogger Roundtable/WebEx Logistics – March 2nd.

[0x8] Six Year Old Rationalizes the Cloud

[0x9] Don’t Hassle the Hoff: Recent Press & Podcast Coverage & Upcoming Speaking Engagements

[0xA] Comments on the PwC/TSB Debate: The cloud/thin computing will fundamentally change the nature of cyber security…

BBC News | Technology | World Edition

Get the latest BBC Technology News: breaking news and analysis on computing, the web, blogs, games, gadgets, social media, broadband and more.

[0x1] Tories may 'lose broadband vote'

[0x2] Dotcom marks silver anniversary

[0x3] China's stern warning to Google

[0x4] Net clash for web police projects

[0x5] HSBC admits huge Swiss data theft

[0x6] Tweeting 'fundamental' in life

[0x7] Microsoft rebuffed in Word appeal

[0x8] 'Console killer' launches in June

[0x9] Apollo men decry Obama Moon plans

[0xA] Passing it on

SecureWorks Info Feed

SecureWorks news, press releases, events, and research alerts.

[0x1] News: Zeus Botnet Dealt a Blow as ISP Troyak Knocked out (PC World)

[0x2] Event: e-crime Congress 2010

[0x3] Announcement: SecureWorks Named Finalist in 2010 SC Magazine Awards Europe for MSSP of the Year

[0x4] Threat Analysis: ZeuS Banking Trojan Report

[0x5] News: SecureWorks Identifies (Credit Union Times)

[0x6] Event: ICBA 2010 National Convention and Techworld

[0x7] Announcement: Hacker Attacks Targeting Healthcare Organizations Doubled in the 4th Quarter of 2009 according to SecureWorks' Data

[0x8] Threat Analysis: BlackEnergy Version 2 Analysis

[0x9] News: Software helps hackers empty corporate accounts (London Financial Times)

[0xA] Event: I(TS)2 Security Empowerment through Information Assurance Event

Edgeos - New Vulnerabilities

Edgeos - Private-Labeled Vulnerability Assessment Services

[0x1] CentOS : RHSA-2010-0101

[0x2] FreeBSD : gnome-screensaver -- Multiple monitor hotplug issues (5223)

[0x3] FreeBSD : fetchmail -- heap overflow on verbose X.509 display (5222)

[0x4] FreeBSD : squid -- Denial of Service vulnerability in HTCP (5225)

[0x5] FreeBSD : linux-flashplugin -- multiple vulnerabilities (5224)

[0x6] HP-UX Security patch : PHSS_40368

[0x7] MDVSA-2010:036: webmin

[0x8] RHSA-2010-0101: openoffice.org

[0x9] SuSE 11.0 Security Update: fuse (2010-02-03)

[0xA] SuSE 11.0 Security Update: horde (2010-02-10)

Vulnerability Analysis Blog

[0x1] Top-10 Top Level and Second Level Domains found in Malicious Software

[0x2] Plain Text Email in Outlook Express

[0x3] Managing IPv6 - Part 2

[0x4] Managing IPv6 - Part 1

[0x5] Internet Explorer Kill-Bits

[0x6] Mitigating Slowloris

[0x7] Vulnerabilities and Attack Surface

[0x8] Release of Dranzer ActiveX Fuzzing Tool

[0x9] Bypassing firewalls with IPv6 tunnels

[0xA] Conficker.C: How many are there?

InfoSecPodcast.com

Information Security related news, opinions and ramblings

[0x1] How-to on securing PDF documents

[0x2] Updating my feed location…thanks Google

[0x3] Most dangerous keywords to search for

[0x4] MIT Lincoln Lab Network Security Software

[0x5] 3 open InfoSec positions at MIT Lincoln Laboratory

[0x6] NAC Panel Discussion: What is the state of NAC?

[0x7] Record IM video on the network?

[0x8] WoW adds 2 factor authentication

[0x9] New blog theme

[0xA] Twitter + Security = Security Twits

ASTALAVISTA Forum Feed

[0x1] Brute Force

[0x2] Blackmailing

[0x3] Guten Tag, Meine Freunde.

[0x4] Cryptography, encryption algorithms, and programming

[0x5] Need ideas on locking Win XP folders

[0x6] Hello From Alabama

[0x7] Which Linux Distro is better !!!

[0x8] [Solved] Wow Hacking

[0x9] Irc Server Setup

[0xA] Distribution, Security and Hacking...

SecuriTeam

Welcome to the SecuriTeam RSS Feed - sponsored by Beyond Security. Know Your Vulnerabilities! Visit BeyondSecurity.com for your web site, network and code security audit and scanning needs.

[0x1] LedgerSMB Multiple Vulnerabilities

[0x2] Kaspersky Lab Multiple Products Local Privilege Escalation Vulnerability

[0x3] Piwik Cookie Unserialize Vulnerability

[0x4] Invision Power Board SQL PHP File Inclusion and SQL Injection

[0x5] U.S. Defense Information Systems Agency (DISA) Unix Security Readiness Review (SRR) Vulnerability

[0x6] Netifera - Modular Open Source Platform for Security Tools

[0x7] WarVOX - Tools for Exploring, Classifying, and Auditing Telephone Systems

[0x8] Webshag - Web Server Audit Tool

[0x9] Browser Fuzzer

[0xA] FSpy - Linux Filesystem Activity Monitoring

CIO Security

Latest Security issues from CIO UK

[0x1] The Internet is nominated for Nobel Peace Prize

[0x2] Morrison add £200 million to IT investment

[0x3] British Airways IT worker charged for 'terrorism plot'

[0x4] Tabloid The Daily Mail exposed for Facebook sleaze

[0x5] HSBC: Data theft incident broader than first thought

[0x6] National Skills Academy for IT website launched

[0x7] HMRC forced to manually process 35 million tax cases due to IT delays

[0x8] Procter and Gamble allow staff to use own laptops

[0x9] Standard Life expects £350m efficiency gain with IT

[0xA] Atos Origin signs up consultants expecting market growth

CSOONLINE.com - Strategic Planning

[0x1] The Myth of Convergence

[0x2] Minimize Risk by Maximizing Accountability

[0x3] The Cloud Security Survival Guide

[0x4] Federal Data Security Law: 'Careful What You Wish For'

[0x5] Survey Says More Companies Hiring CSOs, Holding Steady on Spending

[0x6] The Seven Deadly Sins of Security Policy

[0x7] 7 Ways Security Pros DON'T Practice What They Preach

[0x8] No Excuses: Managing Operational Risk

[0x9] How to Succeed in a Two-Faced IT Security Job Market

[0xA] Surviving Layoffs: Five Career Lessons from the Security Trenches

Black Hat Forum Black Hat SEO

BlackHatWorld is a backhat SEO Forum dedicated to learning black hat seo, cloaking, doorway pages, blogging, automatic content generators and more. Master the ART of "BlackHat"!

[0x1] Paypal Issue...The upgrade box

[0x2] upgrading my comp..could use some advice

[0x3] Well thats how it works :)

[0x4] im a newbie that is interested in copywriting

[0x5] Where to get Girl Pictures for FB profile?

[0x6] Anyone making money with adsense and autoblog

[0x7] im a total noob.

[0x8] Please help: Need to d/l 100 files w Rapidshare Premium

[0x9] Does Poker + Offline Posters = $$$?

[0xA] EZ Auto and GMAIL SMTP?

Department of Homeland Security News

Department of Homeland Security News

[0x1] Secretary, Asia/Pacific Counterparts Meet to Bolster International Aviation Security

[0x2] Greece Designated as Member of the Visa Waiver Program

[0x3] Secretary Napolitano Applauds President's Nominee Robert Harding

[0x4] Secretary Napolitano Announces Deployments of Recovery Act-Funded Advanced Imaging Technology

[0x5] Statement on Secretary Napolitano's Tokyo Visit

[0x6] Readout of Secretary Napolitano's Meeting with Airline Industry CEOs on Strengthening International Aviation Security

[0x7] Under Secretary Wagner’s Testimony on the President’s FY 2011 Budget Request for the Department’s Office of Intelligence and Analysis

[0x8] Secretary Launches National Cybersecurity Awareness Campaign Challenge

[0x9] U.S., Israel Agree to Enhance Joint Aviation Security

[0xA] DHS Tribal Consultation and Coordination Plan Unveiled

MS Sec Notification

Beware that MS often uses these security bulletins as marketing propaganda to downplay serious vulnerabilities in their products -- note how most have a prominent and often-misleading "mitigating factors" section.

[0x1] Microsoft Security Bulletin Major Revisions

[0x2] Microsoft Security Bulletin Summary for March 2010

[0x3] Microsoft Security Bulletin Summary for February 2010

[0x4] Microsoft Security Bulletin Summary for January 2010

[0x5] Microsoft Security Bulletin Major Revision

[0x6] Microsoft Security Bulletin Summary for January 2010

[0x7] Microsoft Security Bulletin Re-Release

[0x8] Microsoft Security Bulletin Major Revisions

[0x9] Microsoft Security Bulletin Summary for December 2009

[0xA] Microsoft Security Bulletin Major Revisions

DarkReading - All Stories

DarkReading

[0x1] Tech Insight: The Keys To Cohesive Encryption In The Enterprise

[0x2] Hackers Not Playing Games With Gaming Sites

[0x3] Malware-Serving ISP Taken Down, Researchers Say

[0x4] Ex-TSA Employee Indicted For Tampering With Database Of Terrorist Suspects

[0x5] New Twitter Feature Looks For Malicious URLs

[0x6] Six Steps To Securing Cloud Computing

[0x7] Top Google Search Items Under Siege

[0x8] Voluntary Breach Disclosure Rare But Valuable

[0x9] Botnets Serving Project Aurora Likely Built By "Amateurs," Researcher Says

[0xA] Ford Motor Rolls Out New Security Features To Prevent Car-Hacking

Xatrix Security Headlines

Latest Computer Security Headlines

[0x1] Hack Attack: Get Windows XP SP3 Through Windows Update

[0x2] TPB files charges against media companies

[0x3] Storm worm: again.

[0x4] Onslaught on .ORGs

[0x5] OpenOffice.org insecure

[0x6] Leave your laptop at home

[0x7] Hack in the Box – Capture the Flag

[0x8] 35% of pay-per-click fraud?

[0x9] New variant mobile worm

[0xA] Google will help users surf safely

CSOONLINE.com - Identity & Access

[0x1] Biometrics: What, Where and Why

[0x2] Free Lunch 2010: Why Public Algorithms Beat the Alternative

[0x3] Take a Walking Tour of Your Company's Security

[0x4] Groundhog Day: The Gartner IAM 2009 Event in Review

[0x5] Top Microsoft Security Architect: Windows 7 Will Slash Malware

[0x6] 6 Ways We Gave Up Our Privacy

[0x7] Where Defense in Depth Falls Short

[0x8] Defining Cloud Security: Six Perspectives

[0x9] News Flash: Data Debauchery That Happens in Vegas Doesn't Stay There

[0xA] Mass. Makes Changes to ID Theft Regulations

DVLabs: Published Advisories

Published Advisories

[0x1] TPTI-10-02 - Microsoft Office PowerPoint Viewer TextCharsAtom Record Code Execution Vulnerability

[0x2] TPTI-10-01 - HP Data Protector Server Cell Manager Remote Code Execution Vulnerability

[0x3] TPTI-09-15 - HP OpenView Data Protector Cell Manager Heap Overflow Vulnerability

[0x4] TPTI-09-13 - HP OpenView NNM snmpviewer.exe CGI Host Header Stack Overflow Vulnerability

[0x5] TPTI-09-12 - HP OpenView NNM ovalarm.exe CGI Accept-Language Stack Overflow Vulnerability

[0x6] TPTI-09-11 - HP OpenView NNM OvWebHelp.exe CGI Topic Heap Overflow Vulnerability

[0x7] TPTI-09-10 - HP OpenView NNM webappmon.exe CGI Host Header Buffer Overflow Vulnerability

[0x8] TPTI-09-09 - HP OpenView NNM ovsessionmgr.exe userid/passwd Heap Overflow Vulnerability

[0x9] TPTI-09-08 - HP OpenView NNM ovlogin.exe CGI userid/passwd Heap Overflow Vulnerability

[0xA] TPTI-09-14 - HP OpenView NNM ovwebsnmpsrv.exe OVwSelection Stack Overflow Vulnerability

honeyblog

A blog on honeypots, honeynets, and more...

[0x1] "Inspector Gadget: Automated Extraction of Proprietary Gadgets from Malware Binaries"

[0x2] Waledac Infection Check

[0x3] Waledac Takedown Successful

[0x4] "A Practical Attack to De-Anonymize Social Network Users"

[0x5] Data Set For Malware Clustering/Classification

[0x6] Call for Papers: LEET'10

[0x7] "Studying Aspects of the Underground Economy"

[0x8] Call for Papers: WEIS'10

[0x9] Challenge 1 posted - Signed books as prizes!

[0xA] Honeynet Project Forensic Challenge 2010

Penetration Testing

While this list is intended for "professionals", participants frequenly disclose techniques and strategies that would be useful to anyone with a practical interest in security and network auditing.

[0x1] Re: proposed pen-test

[0x2] Re: Professional Scrpt Kiddies vs Real Talent

[0x3] RE: Evaluating pentesters

[0x4] Re: Professional Scrpt Kiddies vs Real Talent

[0x5] Re: Evaluating pentesters

[0x6] Re: Evaluating pentesters

[0x7] Controlled DoS

[0x8] Re: Evaluating pentesters

[0x9] Re: DNS Pen-Test Tools

[0xA] Re: Professional Scrpt Kiddies vs Real Talent

CSOONLINE.com - Awareness

[0x1] Awareness tool: Spotting online scams

[0x2] Social Media Risks: The Basics

[0x3] Companies on IT Security Spending: Where's the ROI?

[0x4] Social Engineering: The Basics

[0x5] 10 Things That Didn't Happen in 2009 (And Probably Won't Happen in 2010)

[0x6] Checklist: 11 Security Tips for Black Friday, Cyber Monday

[0x7] 3 Basic Steps to Avoid Joining a Botnet

[0x8] The Cloud Security Survival Guide

[0x9] PCI DSS: No Angel, But Certainly Not the Devil

[0xA] 7 Ways to Stay Happy in a Miserable Profession

SecuObs.com

Observatoire de la securite Internet

[0x1] Metasploit Meterpreter Reverse wmv

[0x2] Convert File exe To shellcode avi

[0x3] new botnet infects 13 millon computers overseas

[0x4] VMware Site Recovery Manager SRM 02 SAN Setup using Lefthand VSA

[0x5] How to restore your windows login Password

[0x6] iptables Walkthrough Linux Firewall

[0x7] Nieuwslicht Een computervirus maken dat kan iedereen Dutch news clip

[0x8] Bypassing AV with Metasploit

[0x9] Fluoride from China Census Healthcare reconciliation worker biometric ID card illegal

[0xA] Immigration reform goes biometric

Twitter / i0n1c

Twitter updates from Stefan Esser / i0n1c.

[0x1] i0n1c: I suggest that planet-php stops whining about non english blog posts and adds a language detector to their aggregator.

[0x2] i0n1c: @beist Amazing that the prequal was on White Day :P

[0x3] i0n1c: I wonder if I am allergic to sesame oil...

[0x4] i0n1c: @LambdaCube Oh you poor guy. However my weekend is also full of work.

[0x5] i0n1c: Am Dienstag halte ich ein Zend Webinar über sichere Programmierung mit dem Zend Framework - http://bit.ly/awsJhU

[0x6] i0n1c: On short notice: There will be a GERMAN Zend Webinar about Secure Programming with the Zend Framework on next Tuesday: http://bit.ly/awsJhU

[0x7] i0n1c: @daveaitel Congratulation!

[0x8] i0n1c: Oh my... I am loosing rank... http://blogs.iss.net/archive/2009Top10VulnResearc.html time to kill some bugs :P

[0x9] i0n1c: Workday is nearly over. CGNSec March (http://cgnsec.de) is later tonight.

[0xA] i0n1c: Tonight is CGNSec Meeting in Hallmackenreuther. http://www.cgnsec.de

CSOONLINE.com - Identity Management

[0x1] What Are the Most Overrated Security Technologies?

[0x2] Why REST Security Doesn't Exist (and what to do about it)

[0x3] Groundhog Day: The Gartner IAM 2009 Event in Review

[0x4] How 9-11 Shaped Hoover Dam Security Operations

[0x5] Hoover Dam Security in Pictures

[0x6] 6 Ways We Gave Up Our Privacy

[0x7] Social Networking a Tool for More Secure Identity Management? No Joke!

[0x8] News Flash: Data Debauchery That Happens in Vegas Doesn't Stay There

[0x9] Potential Gov't Cookie Policy Change Prompts Concerns

[0xA] Software Not Smart Enough to Sort Human Relationships

Smart Security by Dharmesh M Mehta

An Application Security Blog

[0x1] About the 'Rugged' Initiative

[0x2] Plenty of (IN)Secure Broadband Routers

[0x3] Mumbai to Host India’s First e-Crime Forum

[0x4] Latest Phishing Site of ICICI Bank

[0x5] Application security should be addressed in initial SDLC stages

[0x6] Can your Exchange Administrator view your mailbox

[0x7] No Built-In Response.HTMLEncode in Java

[0x8] Dev Tools for Security Testing

[0x9] Botnet Attack Details from Kaspersky

[0xA] Isn't that Impossible?

Cisco Security Notices

Cisco Security Notices (the 40 most recent notices )

[0x1] Cisco IPSec VPN Implementation Group Name Enumeration Vulnerability

[0x2] Crafted DNS Packet Can Cause Denial Of Service

[0x3] Cisco IPsec VPN Implementation Group Password Usage Vulnerability

[0x4] Response to BugTraq - Cisco Clean Access Agent (Perfigo) Bypass

[0x5] CSS SSL Authentication Bypass

[0x6] ZOTOB and WORM_RBOT.CBQ Mitigation Recommendations

[0x7] Response to Full-Disclosure - Potential Denial of Service Bug in Cisco Pix Firewall IOS 6.2.2 and 6.3.(3.102)

[0x8] Cisco 802.1x Voice-Enabled Interfaces Allow Anonymous Voice VLAN Access

[0x9] Vulnerability in a Variant of the TCP Timestamps Option

[0xA] W32.BLASTER Worm Mitigation Recommendations

DarkReading - All Stories

DarkReading

[0x1] Tech Insight: The Keys To Cohesive Encryption In The Enterprise

[0x2] Hackers Not Playing Games With Gaming Sites

[0x3] Malware-Serving ISP Taken Down, Researchers Say

[0x4] Ex-TSA Employee Indicted For Tampering With Database Of Terrorist Suspects

[0x5] New Twitter Feature Looks For Malicious URLs

[0x6] Six Steps To Securing Cloud Computing

[0x7] Top Google Search Items Under Siege

[0x8] Voluntary Breach Disclosure Rare But Valuable

[0x9] Botnets Serving Project Aurora Likely Built By "Amateurs," Researcher Says

[0xA] Ford Motor Rolls Out New Security Features To Prevent Car-Hacking

All Virus Alerts

[0x1] Net-Worm.Win32.Kido

[0x2] Virus.Win32.Gpcode.ak

[0x3] Email-Worm.Win32.Warezov.nf

[0x4] Email-Worm.Win32.Warezov.mx

[0x5] Email-Worm.Win32.Warezov.ms

[0x6] Email-Worm.Win32.Zhelatin

[0x7] Email-Worm.Win32.Zhelatin.u

[0x8] Email-Worm.Win32.Zhelatin.r

[0x9] Email-Worm.Win32.Zhelatin.o

[0xA] Email-Worm.Win32.Warezov

DRJ Current Articles

Current Articles from Disaster Recovery Journal

[0x1] Business Continuity in Emerging Markets

[0x2] Computer based Modeling and Simulation for BC/DR

[0x3] Fraud: An Overlooked Risk

[0x4] Words Count in Emergency Notification

[0x5] 'Auld Lang Syne' - Forging the Link and Building the Chain

[0x6] DRI International’s Participation in the RIMS-PERK

[0x7] Following the Path of Downward Resiliency

[0x8] Lessons Learned By Flood Repair of Electrical Equipment

[0x9] Perfect Practice Makes Perfect

[0xA] Increasing the Value of DR in Everyday Operations

CSOONLINE.com - Industry

[0x1] RSA Conference 2010 and Security B-Sides Recap

[0x2] Listening In

[0x3] RSA Conference 2010: 4 Survival Tips

[0x4] Security B-Sides: Rise of the 'Anti-conference'

[0x5] How to Make Things Worse With IT Security Technology

[0x6] Meeting of the Minds

[0x7] Clearing The Cloud 3: Some Security What-ifs

[0x8] Schmidt Tapped as White House Cybersecurity Coordinator

[0x9] Ten 2010 IT Security Predictions, Part 2: Schmidt and ICSA Labs

[0xA] 10 Predictions for 2010: Kaminsky and Weatherford

US-CERT Cyber Security Alerts

US-CERT Cyber Security Alerts provide timely information about current security issues, vulnerabilities, and exploits. Cyber Security Alerts are released in conjunction with Technical Cyber Security Alerts when there is an issue that affects the general public. Cyber Security Alerts outline the steps and actions that non-technical home and corporate computer users can take to protect themselves from attack.

[0x1] SA10-068A: Microsoft Updates for Multiple Vulnerabilities

[0x2] SA10-040A: Microsoft Updates for Multiple Vulnerabilities

[0x3] SA10-021A: Microsoft Internet Explorer Vulnerabilities

[0x4] SA10-013A: Adobe Reader and Acrobat Vulnerabilities

[0x5] SA10-012B: Microsoft Windows and Adobe Flash Player 6 Vulnerabilities

[0x6] SA09-343A: Adobe Flash Vulnerabilities Affect Flash Player and Adobe AIR

[0x7] SA09-342A: Microsoft Updates for Multiple Vulnerabilities

[0x8] SA09-314A: Microsoft Updates for Multiple Vulnerabilities

[0x9] SA09-286B: Multiple Vulnerabilities Affect Adobe Reader and Acrobat

[0xA] SA09-286A: Microsoft Updates for Multiple Vulnerabilities

CSO Blogs - Physical Security

[0x1] Cauldron Gets Rave Reviews from Raytheon

[0x2] We Need Visibility Like a Police Log

[0x3] Foreshadowing - Behind Bars Where He Belongs - Adam Perlman

[0x4] Hacker, Cracker, Salafi, Spy - Be There!

[0x5] Joseph Stack, Small Aircraft and al-Qa'eda

[0x6] Connecticut AG files HITECH Act Law Suit…holy IT health records enablement!!

[0x7] CyberTerror - the Arms Race We're Losing

[0x8] High Tech Firms Who Outsource Software Development to China - The Dirty Little Secret

[0x9] Good riddance!

[0xA] $200 Discount for RSA

CSOONLINE.com - Compliance

[0x1] Five Security Missteps Made in the Name of Compliance

[0x2] PCI DSS, Come Forward and Be Judged

[0x3] Compliance as Security: The Root of Insanity

[0x4] 4 Cheap Options to Monitor Networks for Evidence

[0x5] The Mass. 201 CMR 17 Survival Guide

[0x6] PCI DSS: No Angel, But Certainly Not the Devil

[0x7] Federal Data Security Law: 'Careful What You Wish For'

[0x8] Analyst: PCI Security a Devil, 'Like No Child Left Behind'

[0x9] Delayed Again: Red Flags Rule Deadline Now June 1, 2010

[0xA] IT Security Outsourcing in Decline; Companies Do More In-house

Latest Alerts From Websense Security Labs

This is the Alert Rss Feed from Websense Security Labs

[0x1] Malicious Web Site / Malicious Code: Searching for Corey Haim Leads to Rogue AV

[0x2] Malicious Web Site / Malicious Code: BBS of Sougou Compromised

[0x3] Malicious Web Site / Malicious Code: Blackhat SEO turns to PDF with Chile and Hawaii disasters

[0x4] Malicious Web Site / Malicious Code: Searching For Joannie Rochette Leads To Rogue AV

[0x5] Malicious Web Site / Malicious Code: Bloom Box Black SEO

[0x6] Malicious Web Site / Malicious Code: Microsoft's Ninemsn Australia Web Site Compromised

[0x7] Malicious Web Site / Malicious Code: Spammers already using Google Buzz

[0x8] Malicious Web Site / Malicious Code: Zeus targeted attacks continue

[0x9] Malicious Web Site / Malicious Code: Bollywood Hungama Web Site Compromised

[0xA] Malicious Web Site / Malicious Code: Zeus Campaign Targeted Government Departments

EarthWeb IT Management News & Views

EarthWeb IT Management News & Views offers busy IT managers up-to-date reports and insightful analysis of IT industry trends.

[0x1] Ask Not What Cybersecurity Can Do for You...

[0x2] Cryptome Users Close PayPal Accounts After Cybercrime Accusation

[0x3] Chrome Responds to Privacy Concerns by Eliminating Unique IDs

[0x4] Trojan Now Comes with Piracy Protection

[0x5] Palin to Testify About Hacked Email

[0x6] Security Researcher Thanks McAfee for Exploit Code

[0x7] Netflix Cancels Contest Due to Privacy Concerns

[0x8] New Security Policy for .org Domain Names

[0x9] Zaman Jailed for TJX Cyber Attack

[0xA] SAS Intros Customer Data Analytics Offering

GNUCITIZEN

Information Security Think tank

[0x1] Hacking Linksys IP Cameras (pt 6)

[0x2] dnsmap v0.30 is now out!

[0x3] Old-school Remote Command Exec Vulnerabilities on Avaya Intuity

[0x4] Skydive

[0x5] Free Web Application Security Testing Tool

[0x6] Of Sec Cons and Magstripe Gift Cards

[0x7] CVE-2009-1151: phpMyAdmin Remote Code Execution Proof of Concept

[0x8] Hacking Linksys IP Cameras (pt 5)

[0x9] Breaking Into a Home With an iPhone

[0xA] Extensions at War

(IN)SECURE Magazine Notifications RSS

Notifications of new (IN)SECURE Magazine issues.

[0x1] (IN)SECURE Magazine Issue 24

[0x2] (IN)SECURE Magazine Issue 23

[0x3] (IN)SECURE Magazine Issue 22

[0x4] (IN)SECURE Magazine Issue 21

[0x5] (IN)SECURE Magazine Issue 20

[0x6] (IN)SECURE Magazine Issue 19

[0x7] (IN)SECURE Magazine Issue 18

[0x8] (IN)SECURE Magazine Issue 17

[0x9] (IN)SECURE Magazine Issue 16

[0xA] (IN)SECURE Magazine Issue 15

Darknet - The Darkside

Ethical Hacking, Penetration Testing & Computer Security

[0x1] Google ‘99.9%’ Certain To Shut Down Google.cn

[0x2] Vicnum – Lightweight Vulnerable Web Application

[0x3] Zeus-related Botnet Servers Taken Offline

[0x4] WebRaider – Automated Web Application Exploitation Tool

[0x5] Energizer Duo USB Battery Charger Software Has Backdoor Trojan

[0x6] SAHI – Web Automation & Application Security Testing Tool

[0x7] Boffins Crack OpenSSL Library Using Power Fluctuations

[0x8] Ncrack – High Speed Network Authentication Cracking Tool

[0x9] High Tech Ticket Scalpers Earn $25 Million Profits

[0xA] Web Security Dojo – Training Environment For Web Application Security

Zero Day

Tracking the hackers

[0x1] The cadence of Microsoft security patches

[0x2] Can Apple Safari avoid another Pwn2Own embarrassment?

[0x3] Advanced Persistent Threats: Should your panties be in a bunch, and how do you un-bunch them?

[0x4] Is that a bot in your pocket? Or does it just look like one?

[0x5] IE zero-day flaw leaks out; Exploit code published

[0x6] A Special Offer From Our Sponsor

[0x7] Freshly patched Adobe PDF flaw under 'active attack'

[0x8] Hackers can locate and exploit the Energizer USB charger backdoor

[0x9] Adobe Reader and targeted malware attacks

[0xA] Microsoft plugs dangerous Excel security holes

Ed Smiley's Blog

IT and Infosec Security Ramblings

[0x1] Bookmarks for February 26th through March 5th

[0x2] New Host, New Design

[0x3] Bookmarks for February 15th through February 26th

[0x4] Bookmarks for January 17th through February 15th

[0x5] Using a netbook as an E-book reader

[0x6] Bookmarks for December 26th through January 15th

[0x7] Bookmarks for November 3rd through December 16th

[0x8] Bookmarks for September 4th through November 3rd

[0x9] Bookmarks for August 12th through September 3rd

[0xA] Would you pay for IT Freedom in the workplace?

CSO Blogs - Data Protection

[0x1] Cauldron Gets Rave Reviews from Raytheon

[0x2] We Need Visibility Like a Police Log

[0x3] Online retailer Monoprice takes its site down as customers complain of fake charges

[0x4] Wyndam: 37 hotels were hit in latest hack

[0x5] The Insider: A Liability or an Asset?

[0x6] Exclusivity in Cloud Engagements

[0x7] Hacker, Cracker, Salafi, Spy - Be There!

[0x8] Don't Pushdo - The Year of the Dragon (Research Group)

[0x9] Connecticut AG files HITECH Act Law Suit…holy IT health records enablement!!

[0xA] Hold Developers Legally Accountable for Software Security Flaws?

Emergency Management News

Government Technology: News: Latest Emergency Management News

[0x1] Text-a-Tip Programs Promote Campus and Public Safety

[0x2] States Scored on Health Emergency Preparedness Capabilities

[0x3] Web-Based System Simplifies South Carolina's Disaster Data Collection

[0x4] New York Testing Emergency Alerts Over Xbox, PlayStation, Wii Online Networks

[0x5] States Receiving Long-Awaited Funds for Enhanced 911

[0x6] Coast Guard Contingency Planner John Stanley Develops Strategies for Natural Disasters and ...

[0x7] Flood Management and Rebuilding Plans Help Iowa Town Recover

[0x8] Virtual Alabama Facilitates Data Sharing Among State and Local Agencies

[0x9] Satellite Technology Provides Disaster Communications When Cell Towers Fail

[0xA] Social Media Brings Together Resources, Creates More Resilient Communities (Analysis, Social ...

Anton Chuvakin Blog - "Security Warrior"

This blog covers all sorts of issues of interest to me, including information security, network security, data security - and all other fun things security.

[0x1] RSA 2010 EXCLUSIVE PCI Security Standards Council Interview

[0x2] Links for 2010-03-10 [del.icio.us]

[0x3] Simple Log Review Checklist Released!

[0x4] Security Warrior Blog EXCLUSIVE: 10 Question Interview with Bob Russo and Troy Leach of PCI Council

[0x5] Links for 2010-03-03 [del.icio.us]

[0x6] Monthly Blog Round-Up – February 2010

[0x7] Links for 2010-03-01 [del.icio.us]

[0x8] The Myth of SIEM as “An Analyst-in-the-box” or How NOT to Pick a SIEM-II?

[0x9] Short Observation on Open Source SIEM

[0xA] RSA 2010: Where to Find Anton?

TraverseCode.com

[0x1] |From: PDF@Exploit| |To: Zeus@Trojan| |Subject: Steals Bank Credentials|

[0x2] Don’t press F1 key in Windows XP

[0x3] Traversing a ‘DLL’: Financial Crimeware (Banker)

[0x4] Orkut Phishing using Blogspot account

[0x5] Social Engineering – Fake TwitterIM Download

[0x6] Scam Mail targeting Indian users “Tax Refund Online Form”

[0x7] Chase Bank Phishing scam Mail

[0x8] Traversing a Financial Crimeware which uses Proxy Technique

[0x9] 1st Rogue Mail in 2010

[0xA] Decrypting the Zeus Config File

Delicious/kungfuhacker

bookmarks posted by kungfuhacker

[0x1] 18293: Belkin 54G Routers Admin Account Default Null Password

[0x2] Cigarbid.com Auctions

[0x3] Habanos & Hermanos - Cigar Viewer

[0x4] Tenable Network Security: Podcast

[0x5] YouTube - tenablesecurity's Channel

[0x6] YouTube - tang lang chuan - tao de la mante religieuse

[0x7] YouTube - Tang Lang Quan Complete Program Part 1

[0x8] YouTube - Shaolin Long Fist Kung Fu Intermediate Sequences with Applications DVD preview

[0x9] YouTube - Xiaohuyan

[0xA] YouTube - Xiao Hu Yan / So Ho Yun / 小 虎 燕

SecurityFocus News

SecurityFocus is the most comprehensive and trusted source of security information on the Internet. We are a vendor-neutral site that provides objective, timely and comprehensive security information to all members of the security community, from end users, security hobbyists and network administrators to security consultants, IT Managers, CIOs and CSOs.

[0x1] News: Change in Focus

[0x2] News: Twitter attacker had proper credentials

[0x3] News: PhotoDNA scans images for child abuse

[0x4] News: Conficker data highlights infected networks

[0x5] Brief: Google offers bounty on browser bugs

[0x6] Brief: Cyberattacks from U.S. "greatest concern"

[0x7] Brief: Microsoft patches as fraudsters target IE flaw

[0x8] Brief: Attack on IE 0-day refined by researchers

[0x9] News: Monster botnet held 800,000 people's details

[0xA] News: Google: 'no timetable' on China talks

Securitas Operandi™

Incorporating security and risk into everyday thought.

[0x1] Certification and Experience: Putting the Cart Before the Horse

[0x2] How to opt out from advertising tracking cookies

[0x3] Connection? TSA Breach + airliner bomb attempt

[0x4] Time Magazine – Google Earth mystery solved

[0x5] E-mail security problems and the Canadian ISPs that are ignoring them

[0x6] TSA learns redaction lesson the hard way…

[0x7] Breathing new life into old hardware with Ubuntu

[0x8] Rest in peace: officers Renninger, Griswold, Owens and Richards

[0x9] Switch to Kaspersky

[0xA] Security question: being watched while watching videos

Twitter / sans_isc

Twitter updates from SANS ISC / sans_isc.

[0x1] sans_isc: [Diary] Spamassassin Milter Plugin Remote Root Attack, (Mon, Mar 15th): Observant reader Roy caught an interesting... http://bit.ly/9Z9yCT

[0x2] sans_isc: [Diary] DST Issue in Windows 7 Ultimate?, (Sun, Mar 14th): One of our readers reported that his copy of Windows 7 ... http://bit.ly/agIG2i

[0x3] sans_isc: [Diary] Reminder: Daylight Saving Time starts tonight in several countries. See http://www.timeanddate.com/time/... http://bit.ly/c55FHu

[0x4] sans_isc: [Diary] Evil Sports Sites, (Sat, Mar 13th): One of our regular readers submitted a Google query to us that points ... http://bit.ly/93LFFD

[0x5] sans_isc: [Diary] Firebug 1.5.3 is out. See http://bit.ly/ck8YM0 , (Sat, Mar 13th): ...(more)... http://bit.ly/cOpUcV

[0x6] sans_isc: [Diary] A new version of Safari is out. Looks like for Mac and Windows. Plenty of security fixes (mostly for Windo... http://bit.ly/dmV6WW

[0x7] sans_isc: Interesting interview with PCI Security Standards Council's CTO and GM by @anton_chuvakin: http://bit.ly/bFAvxc (via @lennyzeltser)

[0x8] sans_isc: [Diary] Firefox 3.6 is being pushed out to users. http://www.mozilla.com/en-US/firefox/3.6/releasenotes/, (Fri, ... http://bit.ly/cj4cdO

[0x9] sans_isc: [Diary] Interesting SKYPE SPIM., (Thu, Mar 11th): Earlier this week Jared sent us an interesting SKYPE spim. Isus... http://bit.ly/daXZQa

[0xA] sans_isc: [Diary] A new version of Safari is out. Looks like for Mac and Windows. Plenty of security fixes (mostly for Wind... http://bit.ly/dmV6WW

Security Watch

Security Watch is a resource center for everything related to tech security: the latest news, review summaries and advice on security-related topics. We show you how you can protect your online identity and keep your computer safe.

[0x1] Microsoft Releases Workaround for IE 0Day

[0x2] Apple Updates Safari to Fix 16 Vulnerabilities

[0x3] Zeus Botnet Takes a Hit

[0x4] LimeWire Adds AVG Malware Scanning To Pro Service

[0x5] PayPal Recommends Iconix Email Authentication System

[0x6] Government Bombarded With Cyber Attacks

[0x7] Vodafone Distributes Malware on HTC Magic Mobile

[0x8] IE Zero Day Attacks Expose IE6, IE7 Users

[0x9] Patch Day Light Yields 2 Updates From Microsoft

[0xA] FTC Warns Companies of Breached Data on P2P Nets

Twitter / exploitdb

Twitter updates from Exploit Database / exploitdb.

[0x1] exploitdb: Joomla component com_gcalendar Suite v2.1.5 Local File Include: http://bit.ly/cdqlIJ

[0x2] exploitdb: PHP Classifieds v7.5 Blind SQL Injection Vulnerability: http://bit.ly/cckfFn

[0x3] exploitdb: Ninja RSS Syndicator v1.0.8 Local File Include: http://bit.ly/c29ZHk

[0x4] exploitdb: Phenix v3.5b SQL Injection Vulnerability: http://bit.ly/cOTxNL

[0x5] exploitdb: Open & Compact FTPd 1.2 Pre-Authentication Buffer Overflow (meta): http://bit.ly/bcHrWD

[0x6] exploitdb: Joomla component com_rpx Ulti RPX v2.1.0 Local File Include: http://bit.ly/9cKuWi

[0x7] exploitdb: PhpMyLogon v2 SQL Injection Vulnerability: http://bit.ly/aKPmsr

[0x8] exploitdb: deV!L`z Clanportal 1.5.2 Remote File Include Vulnerability: http://bit.ly/9UrZ7Z

[0x9] exploitdb: Front Door v0.4b SQL Injection Vulnerability: http://bit.ly/aDjo1W

[0xA] exploitdb: phppool media Domain Verkaufs und Auktions Portal index.php SQL Injection: http://bit.ly/9F9MIa

Peter Guerra

All about security

[0x1] How Robber Barons hijacked the telegraph system

[0x2] The Bedazzler

[0x3] iPhone fix

[0x4] Twitter for Botnet control

[0x5] BlackHat 2009 Presentation

[0x6] SLE, Quantitative versus Qualitative Risk, and Finance

[0x7] BlackHat 2009

[0x8] White House Cyber Security Review is out

[0x9] Panda Cloud Antivirus

[0xA] 500,000 Unique Malware Files Every Day

GovInfoSecurity.com Blogs RSS Syndication

GovInfoSecurity.com.com Blog RSS Feeds

[0x1] The 'P' in PCI Should Stand for People

[0x2] PCI: A Vital Standard for Government

[0x3] Cybersecurity Vs. Cyber Warfare

[0x4] Confessions of a Cyber Czarist

[0x5] Cybersecurity: One Step Forward

[0x6] Should Biometrics Replace Passwords?

[0x7] Is it Dump on Obama Time?

[0x8] Lieberman Warns DHS with Humor

[0x9] 4 Tips on Insider Threats

[0xA] Security Tips for Last-Minute Buyers

ITWeb Computing

Latest ICT Computing news

[0x1] Cloud computing brings risks

[0x2] Google makes concessions to Europe

[0x3] Stratus introduces ftServer line

[0x4] Toshiba unveils green hard drive

[0x5] The Beatles enter the digital age

[0x6] Mobile devices get virtualisation app

[0x7] Starship releases NAS solution

[0x8] European server sales hit rock bottom

[0x9] Gaming tech reaches operating room

[0xA] Power policies not enough

SecuraBit

This is a Computer Security podcast brought to you by the guys at SecuraBit.com. Please visit our web site at http://www.securabit.com or send questions/comments to feedback@securabit.com Thanks for listening!

[0x1] Vulnerability Roundup

[0x2] Show Notice: KrebsOnSecuraBit – Interviewing @briankrebs 10 Mar

[0x3] SecuraBit EP51 – Malware Detection With Sunbelt Software

[0x4] Open Source Android Forensics

[0x5] SANS vLive!: Automating Compliance & Windows Domain Audits with David Hoelzer

[0x6] Vulnerability Roundup

[0x7] Practical Exploitation

[0x8] Vulnerability Roundup

[0x9] Shmoocon 2010 Podcasters Meetup – NSFW!!!!!!

[0xA] SecuraBit Episode 50: Interview with Rob Lee!

Security Database Tools Watch

[0x1] SQLMap v0.8 released

[0x2] WhatWeb v0.4 - released

[0x3] fimap v0.8a released

[0x4] Sniff-n-Spit v1.0 - intercepting communications

[0x5] Imposter v0.9 - Browser Phishing Tool

[0x6] iScanner v0.4 released - Malicious codes scanner

[0x7] KNOPPIX 6.2.1 LiveCD available

[0x8] Samhain v2.6.3 & Beltane v2.3.19 released

[0x9] Social-Engineering Ninja v0.1 Beta - PHP scripts

[0xA] plecost v0.2.2-7 Beta (Update!)

DVLabs: Blogs

Recent Blog Posts

[0x1] MOBOTS: WeatherFist Exposed

[0x2] RSA Conference 2010 Talks

[0x3] Pwn2Own 2010

[0x4] Mostrame la Guita!

[0x5] Ekoparty Wrap Up

[0x6] IPS Testing Realities

[0x7] Ekoparty 2009

[0x8] BlackHat USA 2009 Talk Choices

[0x9] Exploiting MS Advisory 971778: QuickTime DirectShow

[0xA] What's Worse Than Finding a Bug in Your Apple?

Exotic Liability

Exotic Liability

[0x1] Exotic Liability 51: Hungover w/ Ian Amit

[0x2] Exotic Liability 50: Double Stuffed w/ Joe Grand

[0x3] Exotic Liability 49: Misogyny

[0x4] Exotic Liability 48: Benevolent

[0x5] Exotic Liability 47: Fast Forward

[0x6] Exotic Liability 46: Ninja Grillz

[0x7] Exotic Liability 45: The Couch

[0x8] Exotic Liability 44: A New Year of Terrorism

[0x9] Exotic Liability 43: An Exotic Christmas

[0xA] Exotic Liability 42: Tom Brennan

suck-o.com hacking - coding - development

Hacking, coding, web development, lots of high quality downloads and friendly forums. Join our community, we are non-commercial and independent!

[0x1] Record 13-Year Sentence for Hacker Max Vision

[0x2] Cyber attacks against Australia `will continue`

[0x3] ‘Don’t Be Evil,’ Meet ‘Spy on Everyone´: How the NSA Deal Could Kill Google

[0x4] Google to enlist NSA to help it ward off cyberattacks

[0x5] Parallel Algorithm Leads to Crypto Breakthrough

[0x6] CIA, PayPal under bizarre SSL assault

[0x7] Internet Service Providers have a pessimistic view of the future

[0x8] Mozilla unfurls first mobile Firefox

[0x9] Hackers Targeted Oil Companies for Oil-Location Data

[0xA] Amateur goof makes Twitter account hijacking a snap

CSOONLINE.com - Data Protection

[0x1] Data Exfiltration: How Data Gets Out

[0x2] Security Execs Express Surprise Over CISO's Firing Following RSA

[0x3] Security Industry Faces Attacks it Cannot Stop

[0x4] ZeuS Botnet Code Keeps Getting Better

[0x5] HSBC: Data Theft Incident Broader Than First Thought

[0x6] Pennsylvania Fires CISO Over RSA Talk

[0x7] After Takedown, Botnet-Linked ISP Troyak Resurfaces

[0x8] Cyberattacks Raise E-Banking Security Fears

[0x9] Excel Vulnerabilities Revealed on 'Slower' Patch Tuesday

[0xA] Microsoft Skips Patch for PowerPoint Add-on

My Security Blog

Security Chronicles By Umesh Thota

www.secureblog.net

[0x1] Must Have Security Solutions (for free)

[0x2] Goolag Scanner Released!

[0x3] Change DNS ? for a Safer, Faster Online Experience

[0x4] New Theme (*Garland)

[0x5] Iconix eMail ID!

[0x6] SQL Injection Scanner

[0x7] Symantec confirms vulnerability in antivirus software

[0x8] Symantec Anti Virus Software Flawed !!!

[0x9] Security in the CLR World Inside SQL Server

[0xA] New Yahoo IM Worm Poses as 'Safety' Browser

Capi's Corner

Development, Network, Security, Ideas & Opinions

[0x1] Remaining Windows Vista/7 “rearm count”

[0x2] Novatel Merlin U740 using only Windows 7 onboard tools

[0x3] tr.im to be shut down

[0x4] URL shortening services soon to be under siege?

[0x5] Windows Vista Home/Business/Enterprise has a telnet client, too

[0x6] How to force Git to consider a file as binary

[0x7] Router default password database

[0x8] 25C3 CTF – 2nd place for Hagenberg’s team “h4ck!nb3rg”

[0x9] My initial git settings for any repository

[0xA] A new design for my blog

Twitter / Panda_Security

Twitter updates from Panda Security / Panda_Security.

[0x1] Panda_Security: RT @lithium: Cyber-criminals don't need technical skills - http://bit.ly/90wUV7 #pandasecurity

[0x2] Panda_Security: New worm on PandaLabs encyclopedia. P2PShared.AV reduces the protection level of the computer http://bit.ly/9YeXFC

[0x3] Panda_Security: RT @Luis_Corrons: Teaching Some Security. Lesson 16: http://twitpic.com/17xix3 #TecSec

[0x4] Panda_Security: RT @PandaTechSup: New blog post:Tell the world you are looking for a job http://shar.es/mbCGj #LaPiazza

[0x5] Panda_Security: RT @lithium PandaLabs Blog Post: Demonstrating the Latest IE 0-day Vulnerability http://bit.ly/dbzWkE

[0x6] Panda_Security: RT @Luis_Corrons: Teaching Some Security. Lesson 15: http://twitpic.com/17qg1k #TecSec

[0x7] Panda_Security: RT @Luis_Corrons: Finally I have the stats on Mariposa, enjoy! - http://bit.ly/91my67 - PandaLabs Blog

[0x8] Panda_Security: RT @lithium: @Panda_Security CEO @JuanSantana quoted in a USA Today story: Cyberthieves stealing from small businesses- http://bit.ly/9PS9Lo

[0x9] Panda_Security: ExeFolder.E new worm on PandaLabs encylopedia. http://bit.ly/aRMZWB

[0xA] Panda_Security: New PandaLabs blog post. Vodafone distributes Mariposa-like bot. http://bit.ly/d3eTBm

Help Net Security - News

Help Net Security is a daily updated security related site. We offer information on the latest happenings in the InfoSec world, advisories, viruses, papers, and more. HNS also has a large download section of security tools for Windows, Linux, Mac OS X and Pocket PC.

[0x1] Rogue software details: Smart Security

[0x2] Does Web 2.0 need Web security 2.0?

[0x3] Collection of security checks for Linux

[0x4] Introducing the Cyber Defence conference

[0x5] Week in review: Compromised hardware, AV failures and published IE 0-day exploit

[0x6] The threat landscape is changing, AV fails to adjust

[0x7] Apple Safari 4.0.5 patches critical vulnerabilities

[0x8] Playstation emulator installs malware

[0x9] PeerSec MatrixSSL: Embedded SSL and TLS implementation

[0xA] Exploit for IE 0-day flaw published, patch still unavailable

Microsoft news from Network World

Breaking Microsoft news and analysis from NetworkWorld.com

[0x1] Microsoft's four big Windows Phone 7 priorities at MIX10

[0x2] IT risks, wariness and planned obsolescence

[0x3] Cisco, Microsoft certifications increase high-tech salaries

[0x4] Microsoft seeks browser comeback with IE 9

[0x5] Excel vulnerabilities revealed on 'slower' Patch Tuesday

[0x6] How we tested Microsoft Forefront UAG

[0x7] Microsoft delivers feature-rich SSL-VPN

[0x8] Tech debate: Google Gmail vs. hosted Microsoft Exchange

[0x9] Microsoft's Ballmer: 'For the cloud, we're all in'

[0xA] Microsoft at last releases famed Red Hat/Linux virtualization drivers

HSC Security Portal

Hackers Center Security Portal is one of the most complete, updated and visited Securty portals on the net. We offer Security Blogs, Exploits, Texts, Tools

[0x1] Scrubyt 0.4

[0x2] Sahi V3

[0x3] UrlParams 2.2.0

[0x4] TemperIE

[0x5] Nikto 2

[0x6] hcraft 1.0.0

[0x7] MSNPawn 1.1

[0x8] httprint

[0x9] DIRB

[0xA] WebInject 1.4

2600: The Hacker Quarterly

Off The Hook and Off The Wall

[0x1] CLUB MATE DAY #2 NEXT SATURDAY

[0x2] Off The Hook show for March 10, 2010

[0x3] Off The Wall show for March 9, 2010

[0x4] VERIZON OUTAGE FINALLY OVER AFTER FOUR DAYS

[0x5] THE NEXT HOPE PREREGISTRATION NOW OPEN

[0x6] CALL FOR SPEAKERS FOR THE NEXT HOPE

[0x7] WINTER ISSUE OF 2600 RELEASED

[0x8] 2600 POLO SHIRTS ARE OUT!

[0x9] CLUB MATE NOW AVAILABLE THROUGH 2600

[0xA] AUTUMN ISSUE OF 2600 RELEASED

The Hacker's Choice - Freeworld News

News around The Hacker's Choice including releases, papers, exploits and other activities

[0x1] Found vmap FINAL during cleanup!

[0x2] THC is hosting a #bluebox party at har2009.

[0x3] THC is proud to release a video and a tool to backup data...

[0x4] BLOG: The risk of ePassports and RFID

[0x5] BLOG: Story from the past of how to scan the internet

[0x6] THC is proud of hosting BlueMaho, a Bluetooth Security Te...

[0x7] From now on THC is sharing their thoughts with you!

[0x8] THC is proud to announce the SIM Toolkit Research Project.

[0x9] THC is proud to announce that the GSM Software Project an...

[0xA] Dear visitors, dear fans and supporters of THC.

EliteHackers.info Discussion Forums

EliteHackers.info has a large memberbase on our forums. We also have a files database, a text & tutorials archive. There is also a proxy list section as well as our ports list database.

[0x1] System Recovery

[0x2] Help with sockets

[0x3] Python tutorial

[0x4] index.html

[0x5] how to hide ip address?

[0x6] bkhive segfaults :(

[0x7] Delphi 2009

[0x8] My funny little story :)

[0x9] Linux on a macbook

[0xA] Selling Ccv2 and Track 1 & 2(Dumps) Only

CSOONLINE.com - Access Control

[0x1] Using Biometric Access Systems: Dos and Don'ts

[0x2] What Are the Most Overrated Security Technologies?

[0x3] Virtualised USB Key Beats Keyloggers

[0x4] Y2K All Over Again in 2010?

[0x5] Groundhog Day: The Gartner IAM 2009 Event in Review

[0x6] How 9-11 Shaped Hoover Dam Security Operations

[0x7] Hoover Dam Security in Pictures

[0x8] Fingerprints Not Enough for Future Security Government Systems

[0x9] Why Pen Testing Is Central to Pennsylvania's App Security

[0xA] News Flash: Data Debauchery That Happens in Vegas Doesn't Stay There

Network World on Spam

The latest spam and anti-spam news and analysis from NetworkWorld.com

[0x1] Apple plugs 16 holes in Safari as Pwn2Own looms

[0x2] Pennsylvania fires CISO over RSA talk

[0x3] IE zero-day exploit code goes public

[0x4] Hackers exploit latest IE zero-day with drive-by attacks

[0x5] Hackers love to exploit PDF bugs, says researcher

[0x6] Microsoft skips patch for PowerPoint add-on

[0x7] Energizer Bunny's software infects PCs

[0x8] Google attacks, Web 2.0 fuel FUD at RSA

[0x9] Microsoft's tax-for-hacks 'horrible' idea, say security experts

[0xA] Dept of Homeland Security Crowdsources Cybersecurity

CSOONLINE.com - Supply Chain

[0x1] Supply Chain Security Threats: 5 Game-Changing Forces

[0x2] Chemical Spill Response: How Dow is Training Small Town America to Handle Hazmat Emergencies

[0x3] SLIDESHOW: Chemical Safety Training

[0x4] Swine Flu: How to Make Biz Continuity Plans

[0x5] UPDATED: Pandemic Preparedness Primer

[0x6] What New Air Cargo Security Rules Mean for Business

[0x7] CBP and Smart Containers: What Does It Know?

[0x8] 3 Global Risks to Business in 2009

[0x9] 10 Steps to Loading Dock Security

[0xA] Loading Docks in Multitenant Buildings

Murky

Tending to Geekiness

[0x1] Paris Nice 2010 – Stage 7 Results

[0x2] Paris Nice 2010 – Stage 6 Results

[0x3] F1 2010 Bahrain

[0x4] Happy Pi Day!

[0x5] Paris Nice 2010 – Stage 5 Results

[0x6] Six Nations 2010 – Match 11 – Scotland vs. England

[0x7] Six Nations 2010 – Match 10 – Ireland vs. Wales

[0x8] Paris Nice 2010 – Stage 4 Results

[0x9] Paris-Nice Stage 3 results

[0xA] A200 – Block 1 is ending

SecureLexicon

[0x1] Michigan Homeland Security Consortium Podcast – Pixel Velocity

[0x2] Cyber War is with Us

[0x3] Risk Mitigation through Collaborative Innovation

[0x4] Political Survival for Security Pros – #1

[0x5] Food for Thought – Creation Spaces

[0x6] IT Talent Helping Haiti

[0x7] NetWitness’s Amit Yoran on The Art of War

[0x8] How to Sell Security Investments

[0x9] PGP’s Dunkelberger on Data Protection

[0xA] The Factors of CIO Success

HBH News Feed

HellBoundHackers RSS Feed

[0x1] Server Maintenance

[0x2] Pirate to Pay $1.5m to Nintendo

[0x3] Information Disclosure Vulnerability found in IE

[0x4] HBH Updates

[0x5] Firefox 3.6 released

[0x6] Patch for Internet Explorer exploit

[0x7] Google Hacked by China-based attackers

[0x8] Court bans sale of Microsoft Word in US

[0x9] Hackers are defeating tough authentication

[0xA] HBH Signature Competition

US-CERT Cyber Security Bulletins

US-CERT Cyber Security Bulletins provide bi-weekly summaries of security issues and new vulnerabilities. They also provide patches, workarounds, and other actions to help mitigate risk.

[0x1] SB10-067: Vulnerability Summary for the Week of March 1, 2010

[0x2] SB10-060: Vulnerability Summary for the Week of February 22, 2010

[0x3] SB10-053: Vulnerability Summary for the Week of February 15, 2010

[0x4] SB10-046: Vulnerability Summary for the Week of February 8, 2010

[0x5] SB10-040: Vulnerability Summary for the Week of February 1, 2010

[0x6] SB10-018: Vulnerability Summary for the Week of January 11, 2010

[0x7] SB10-011: Vulnerability Summary for the Week of January 4, 2010

[0x8] SB10-004: Vulnerability Summary for the Week of December 28, 2009

[0x9] SB09-362: Vulnerability Summary for the Week of December 21, 2009

[0xA] SB09-355: Vulnerability Summary for the Week of December 14, 2009

CSO Blogs - Business Continuity

[0x1] Cauldron Gets Rave Reviews from Raytheon

[0x2] We Need Visibility Like a Police Log

[0x3] Hacker, Cracker, Salafi, Spy - Be There!

[0x4] Don't Pushdo - The Year of the Dragon (Research Group)

[0x5] Joseph Stack, Small Aircraft and al-Qa'eda

[0x6] Connecticut AG files HITECH Act Law Suit…holy IT health records enablement!!

[0x7] Hold Developers Legally Accountable for Software Security Flaws?

[0x8] Time to re-think encryption

[0x9] The Changing Nature Of Governance, RIsk And Compliance

[0xA] CyberTerror - the Arms Race We're Losing

Infosecurity.US

Information Security And Occasional Forays Into Other Realms

[0x1] On A Claire Day: You’re Welcome

[0x2] LifeLock Coughs Up $12,000,000, Settles FTC Lawsuit

[0x3] Lisa Benson: Nanny Nation

[0x4] US Government Accountability Office – National Security Council’s Comprehensive National Cybersecurity Initiative Deemed Defective

[0x5] Happy Pi Day 2010

[0x6] Lisa Benson: Chained Freedom

[0x7] Reprise: Heroes – Josh Glover, USMC

[0x8] Steve Kelly: Prius

[0x9] Astounding: Ford ’s Sync Collects In-Vehicle Utterances…

[0xA] Chip Bok: Apology Channel

Why Joseph

InfoSec Thoughts Ideas and Practice

[0x1] Penetration Testing Debate: Security Controls On or Off: article 201002

[0x2] First virus removal of 2010: article 201001

[0x3]

[0x4] Looking for a New Opportunity

[0x5] Bootable BackTrack 3 USB drive that allows Persistent Changes: article 200914

[0x6] My July 4th Photo's from Plano Texas: article200913

[0x7] FOLLOW UP Hacking Practical 1: Cracking WEP: article 200912

[0x8] Hacking Practical 1: Cracking WEP: article 200911

[0x9] Script the World 2; Know Your Variables: article 200910

[0xA] Unetbootin for OS on a USB Stick: article 200909

ITWeb News Feed

Latest ICT news

[0x1] Kaspersky reveals six newcomers

[0x2] DCC extends Dell partnership

[0x3] Nokia waters its green strategy

[0x4] Social networking transforms data warehousing

[0x5] Miscommunication damages projects

[0x6] The data warehouse equals profit base

[0x7] Panda, Against Intuition fight cyber crime

[0x8] Building a Web 2.0 enterprise

[0x9] iBurst looks to newly licensed

[0xA] More fuss over Nyanda's cars

SearchSoftwareQuality: Software quality news and advice

News, analysis and technical advice about securing applications and Web services.

[0x1] Is unit testing an important aspect of software development?

[0x2] Excelling in Agile software development, testing and quality tutorial

[0x3] Software test expert: Why Agile teams' unit tests often fail

[0x4] Software project manager perspective: The components of successful application development

[0x5] Software requirements gathering techniques

[0x6] Making unit testing a priority

[0x7] Top-notch tools for your software project manager toolbox

[0x8] Agilists share product owner stories on Scrum and Agile

[0x9] New fuel to the Agile ALM solution fire from Version One

[0xA] The Agile way, who can do it and who can't?

ZDI: Recent Press

Recent Press Hits

[0x1] Zero-days flaws surface in Apple Safari

[0x2] Hacker Report 'High Risk' Flaws in Safari Browser

[0x3] Apple Safari To Give Up First In Hacking Contest Read more: http://www.itproportal.com/security/news/article/2010/2/18/apple-safari-give-first-hacking-contest/#ixzz0fuBPCmbf

[0x4] Will Apple's Safari Fall First in Hacking Contest ... Again?

[0x5] Hacking contest organizer: Safari will fall first

[0x6] Contest offers $100,000 for smartphone, browser hacks

[0x7] Hackers at Pwn2Own to compete for $100K in prizes

[0x8] CanSecWest Pwn2Own Hacker Contest Targets Smartphones

[0x9] Microsoft, Google split over browser bug bounty

[0xA] Researchers warn of likely attacks

Government Technology Public Safety / Justice / Homeland Security News

Government Technology: News: Public Safety / Justice

[0x1] Better Productivity and Officer Safety Part 3 of Front Line Technology Series

[0x2] High-Tech Tools Detect Weapons of Mass Destruction at Los Angeles Port Complex

[0x3] Washington, D.C., Tracks Fire Hydrants with Analytics and Asset-Management Software

[0x4] Improving Data Quality to Reduce Fraud and Increase Revenue